Welcome to WebmasterWorld Guest from 18.104.22.168
Forum Moderators: bill
Recently Bought a Windows Computer? Microsoft Probably Has Your Encryption Key [theintercept.com]
One of the excellent features of new Windows devices is that disk encryption is built-in and turned on by default, protecting your data in case your device is lost or stolen. But what is less well-known is that, if you are like most users and login to Windows 10 using your Microsoft account, your computer automatically uploaded a copy of your recovery key – which can be used to unlock your encrypted disk – to Microsoft’s servers, probably without your knowledge and without an option to opt-out.
If you’re using a recent version of Windows, and your computer has the encryption chip, and if you have a Microsoft account, your disk will automatically get encrypted, and your recovery key will get sent to Microsoft.
...giving the key to a third party is a severe risk. If the key gets loose your data is at risk.Assuming you store sensitive data within the Windows OS, which I don't. I also don't keep usernames/passwords in the browser (which always seemed like a vastly stupid idea, but almost everyone I know does it.)
If all your data is backed up in OneDrive, along with your key, you'd never know if your data was opened.
If any big tech company has your data, so will various governments
When I introduced her to using a password manager instead of storing them in clear text in an Excel spreadsheet, she declared a few weeks later that I had "ruined her life."
At this point I'm just glad that someone has identified the issue and documented some recourse.