Reports of a new hardware encryption vulnerability have been circulating today. Microsoft is aware of the reports and is now providing mitigations.
To check the type of drive encryption being used (hardware or software):
- Run ‘manage-bde.exe -status’ from an elevated command prompt.
- If none of the drives listed report “Hardware Encryption” for the Encryption Method field, then this device is using software encryption and is not affected by vulnerabilities associated with self-encrypting drive encryption.