A potentially critical vulnerability has surfaced affecting **Windows 11's** default **BitLocker** encryption. The exploit, dubbed **YellowKey**, allows attackers with physical access to a machine to bypass the full-volume encryption designed to protect sensitive data. ### YellowKey Exploit Details The exploit was published by a researcher known as Nightmare-Eclipse, and is available on **GitHub**. It reportedly bypasses default **Windows 11** installations of **BitLocker**, which relies on a Trusted Platform Module (**TPM**) to store the decryption key. **BitLocker** is a crucial security measure for many organizations, especially those working with government entities. > The exploit, named YellowKey, was [published](https://github.com/Nightmare-Eclipse/YellowKey) earlier this week by a researcher who goes by the alias Nightmare-Eclipse. It reliably bypasses default Windows 11 deployments of BitLocker, the full-volume encryption protection Microsoft provides to make disk contents off-limits to anyone without the decryption key, which is stored in a secured piece of hardware known as a trusted platform module (TPM). BitLocker is a mandatory protection for many organizations, including those that contract with governments. ### Impact and Mitigation The requirement for physical access does limit the scope of the exploit. However, it still poses a significant risk for devices that may be left unattended or are vulnerable to physical tampering. IT security professionals should investigate the **YellowKey** exploit and evaluate potential mitigations. Further details and discussions can be found on **Slashdot** and the researcher's **GitHub** profile. **GitHub Account:** [https://github.com/Nightmare-Eclipse](https://github.com/Nightmare-Eclipse) **Slashdot Discussion:** [https://tech.slashdot.org/story/26/05/14/0554201/mystery-microsoft-bug-leaker-keeps-the-zero-days-coming]