Recently Bought a Windows Computer? Microsoft Probably Has Your Encryption Key

Found on The Intercept on Wednesday, 30 December 2015

One of the excellent features of new Windows devices is that disk encryption is built-in and turned on by default, protecting your data in case your device is lost or stolen. But what is less well-known is that, if you are like most users and login to Windows 10 using your Microsoft account, your computer automatically uploaded a copy of your recovery key – which can be used to unlock your encrypted disk – to Microsoft’s servers, probably without your knowledge and without an option to opt-out.

A law enforcement or spy agency could send Microsoft a request for all data in your account, which would legally compel them to hand over your recovery key, which they could do even if the first thing you do after setting up your computer is delete it.

Enterprise users will be really happy with all the bad news and information about Windows 10 and stick to previous versions as long as possible; or, since they have to get used to another UI, just switch over to a common Linux distribution.

Browse all articles« Previous « » Next »