Microsoft Issues Guidance for Reported Hardware Encryption Vulnerability

Reports of a new hardware encryption vulnerability have been circulating today. Microsoft is aware of the reports and is now providing mitigations.

Security Advisory: ADV180028 | Guidance for configuring BitLocker to enforce software encryption

To check the type of drive encryption being used (hardware or software):

  1. Run ‘manage-bde.exe -status’ from an elevated command prompt.
  2. If none of the drives listed report “Hardware Encryption” for the Encryption Method field, then this device is using software encryption and is not affected by vulnerabilities associated with self-encrypting drive encryption.