Windows 10: CLI during WinX Install bypasses BitLocker

  1. johngalt's Avatar
    Posts : 1,534
    WinX Pro x64 IP current
       30 Nov 2016 #1

    CLI during WinX Install bypasses BitLocker

    Press Shift + F10 during Windows 10 Upgrade to Launch Root CLI & bypass BitLocker

    Tuesday, November 29, 2016 Swati Khandelwal

    If your computer's security relies on Windows BitLocker Hard Drive Encryption software, then Beware! Because anyone with physical access to your PC can still access your files within few seconds.

    All an attacker need to do is hold SHIFT+F10 during Windows 10 update procedure.

    Security researcher Sami Laiho discovered this simple method of bypassing BitLocker, wherein an attacker can open a command-line interface with System privileges just by holding SHIFT+F10 while a Windows 10 PC is installing a new OS build.
    Read the full article at Press Shift + F10 during Windows 10 Upgrade to Launch Root CLI & bypass BitLocker
      My ComputersSystem Spec

  2. johngalt's Avatar
    Posts : 1,534
    WinX Pro x64 IP current
       30 Nov 2016 #1

    I use this native CLI feature to prepare HDs prior to installing when performing a clean install. I had no idea that BitLocker was disabled during upgrades, though. This is interesting.

    I wonder if you can do this with any WinX .ISO / USB to any computer?
      My ComputersSystem Spec

  3. Posts : 167
    Windows 10 Ent, Pro & Home
       01 Dec 2016 #2

    So you have to have Physical access and be logged in to do this Hack. Couldn't you just go into the Control Panel and disable Bit locker, because you are already logged on? Maybe you should always use win key + L when you walk away from your computer. I thought it was funny yesterday when Betanews had this article, too.
      My ComputerSystem Spec

  4. johngalt's Avatar
    Posts : 1,534
    WinX Pro x64 IP current
    Thread Starter
       01 Dec 2016 #3

    No. You would need to have login access to do that.

    This is only viable while Windows is upgrading, but still a problem nonetheless. I don't know if it could also be manipulated using a WinX install disc / USB drive, but if it can, then any device that doesn't have the BIOS / UEFI set to block booting from other devices (IOW, booting only from the installed HDD is allowed) is vulnerable, as I could simply boot the WinX installer and access the data on the machine.
      My ComputersSystem Spec


Related Threads
Solved Bitlocker without TPM help in AntiVirus, Firewalls and System Security
Hi all, I've been having a bit of trouble trying to get Bitlocker working on my Dad's laptop. He recently bought a new laptop with Win 7 pro and I upgraded it to Win 10. It all went smoothly except now when I'm trying to get Bitlocker to encrypt...
Hi, I have an issue since upgrading to Windows 10 from Windows 7 few months ago. Basically, Windows 10 has that feature to right click on Start menu button to get access to system shortcuts like Programs, Settings etc. So this feature just stopped...
Hey guys, Long story short, I bought my mother a new HD for her Laptop but realized I did not have a bootable Winx or Win7 disk (They are burned but are not Bootable). So I downloaded Magic ISO and everything seemed Ok, my Vypre antivirus came up...
Solved BitLocker in AntiVirus, Firewalls and System Security
This may sound Odd or maybe I have a memory block, But what is Bit Locker ? Did it com with win.10 And what is it's function I was thinking of Bit Defender Antivirus.But I know thats not it .
Solved WinX TP build 9926 in Windows Insider
Upgraded from Win7 to TP-9926 yesterday and Internet connection is very buggy and slow. My other PC on same network are fast and responsive. Is this a known problem for WinX? or maybe something is not configured correctly? (I let the update program...
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd
All times are GMT -5. The time now is 09:25.
Find Us