Skip to main content

Microsoft seeking fix after vulnerability found in Windows 10 security feature

windows 10 feature update turns off bitlocker creating exploit mail
Anton Watman/Shutterstock
One of Windows’ most important security features is BitLocker support, which has provided full-disk encryption since Windows Vista first rolled out. Coupled with a compatible Trusted Platform Module, which is now required for new Windows 10 machines, BitLocker theoretically provides solid protection for a Windows machine that’s lost or stolen.

However, any security feature is only as good as the entire system that surrounds it, and any weak link can present a vulnerability that renders it less than secure. For Windows 10, the weak link involves the fact that the operating system turns off Bitlocker during Feature Updates, aka upgrades, creating a potential exploit, as the official Win-Fu blog reports.

Recommended Videos

According to Windows trainer and MVP Sami Laiho, the vulnerability occurs due to the ability to hit SHIFT+F10 during the reimaging process performed during a Feature Update and access the command prompt. This result in access by the non-admin account that’s in use during the update to the root SYSTEM folder and to all of the contents of the non-BitLocker-protected hard drive.

The following video provides an overview of the process:

Win Fu Official Blog Every Windows 10 in place Upgrade is a SEVERE Security risk

According to The Register, security experts further maintain that anyone with physical access to the machine could exploit the bug to access the BitLocker encryption keys. Fortunately, Microsoft is working on fixing the bug, which affects all relevant versions of Windows 10 including the production versions 1511 (November Update) and 1607 (Anniversary Update), as well as newer Windows Insider builds.

The bug does require physical access to the Windows 10 machine, but once that’s accomplished, for example via theft or by an internal employee, then the bug allows admin access to the system once an upgrade is kicked off. Until Microsoft issues a fix, Laiho recommends disallowing unattended upgrades and using the Long-term Servicing Branch version of Windows 10. That’s not much help to nonenterprise Windows 10 users, however, and so maintaining physical control over a Windows 10 machine becomes that much more important.

Mark Coppock
Mark Coppock is a Freelance Writer at Digital Trends covering primarily laptop and other computing technologies. He has…
PC gamers still prefer Windows 10 over Windows 11
A man stands in front of a gaming PC.

Windows 11 saw a decline in the latest Steam hardware and software survey for July 2024. According to Valve's data, gamers using Microsoft's newer operating system dropped below the 46% threshold. Currently, Windows 11 accounts for approximately 45.81% of all Windows users on Steam, marking a decrease of 0.82% from the previous month.

In contrast, Windows 10 experienced an increase of 0.74%, reaching a 50.16% share. Although gaming performance is generally similar on both operating systems, a recent test by Hardware Unboxed reveals that Windows 10 may offer better performance in certain titles due to the core isolation feature, where memory integrity is enabled by default on Windows 11.

Read more
Windows 11 vs. Windows 10: Is it finally time to upgrade?
Microsoft Surface Laptop 2 sitting on a table.

Windows 11 is the newest version of Windows, and it's one of the best Windows versions ever released. At launch, the operating system was very similar to Windows 10, but it has morphed a lot over the past several years. Now, Windows 11 has several key differences compared to Windows 10.

If you've been holding out on upgrading, we have everything you need to know about Windows 11 and how it's different than Windows 10 in this article. We'll detail the differences, as well as show you the areas where Windows 11 is growing faster than Windows 10.
Windows 11 vs. Windows 10: what's new

Read more
Microsoft is backpedaling on future Windows 10 updates
The Windows Update screen in Windows 10.

Windows 10 is on its way out, with support ending in October 2025. That isn't changing, though Microsoft's approach to rolling out new features in the meantime definitely has. In a surprising move, Microsoft announced in a June 4 Windows Insider Blog post that it is bringing a Beta Channel for those Windows Insiders currently running on Windows 10 version 22H2.

This means that despite the end of support, Windows 10 users will continue to get some new features that were initially restricted to Windows 11, such as the new Copilot app. It's also possible that other features may be on the way, but Microsoft has not released any further information on the subject. It was originally stated that Windows 10 version 22H2 would be its final feature update, but that appears to not be true anymore.

Read more