lenovo encryption

pcpete · Sep 25, 2019

I have a client who has bit locker encryption who does not have the ms account it was tied to. The computers mother board died and we need to get the information from it. He said it came from Lenovo already encrypted. Do they send them out that way or do they make you encrypt it the first time it is ran and have you set up a password/MS account then? Any ideas on what path to take to track down the key?

nlinecomputers · Sep 25, 2019

It has to be on a Microsoft Account or active directory.

Sky-Knight · Sep 25, 2019

Bitlocker requires setup, they don't come from the OEM that way...

I haven't seen one of these yet because I'm dreading it, if you've lost the decryption keys the data is gone... That's kinda the point of encryption. Don't screw up, because if you do you're toast.

nlinecomputers · Sep 25, 2019

Sky-Knight said:
Bitlocker requires setup, they don't come from the OEM that way...

Not quite correct. WINDOWS 10 by default will enable device encryption on any system with a TPM chip, an SSD drive, and logging into a Microsoft Account. The problem is that idiots setup said accounts on setup and never look again and forget it.

nlinecomputers · Sep 25, 2019

https://support.microsoft.com/en-us/help/4026181/windows-find-my-bitlocker-recovery-key

pcpete · Sep 25, 2019

we kept trying all of his emails and found an MS one the we reset and now have the key

YeOldeStonecat · Sep 25, 2019

pcpete said:
we kept trying all of his emails and found an MS one the we reset and now have the key

They sure got lucky there. Cuz without the key...you're never..ever...getting into the content of that drive!

phaZed · Sep 25, 2019

YeOldeStonecat said:
They sure got lucky there. Cuz without the key...you're never..ever...getting into the content of that drive!

Well, not in a 1000 years anyways!

Your PCMD · Sep 26, 2019

phaZed said:
Well, not in a 1000 years anyways!

Unless you use Googles 52 qubit quantum computer - a mere seconds.

Rosco · Sep 26, 2019

Your PCMD said:
Unless you use Googles 52 qubit quantum computer - a mere seconds.

You got some real flex to have access to that.

If only we did have access to that sort of power!

fencepost · Sep 27, 2019

YeOldeStonecat said:
They sure got lucky there. Cuz without the key...you're never..ever...getting into the content of that drive!

Not entirely true if it's configured to boot to a Windows login screen. In that scenario the TPM has provided the key for booting. For the sufficiently motivated and skilled, a few hundred $$ in equipment and some time will let you sniff that key during the boot process (as long as the system doesn't recognize any hardware changes as having happened). If you do fine-featured soldering already you may only need a ~$25 FPGA, otherwise you're going to need tools, supplies, and some trash boards to do a bunch of practice on.

The protection against this is TPM+PIN (or password) for booting.

For a nice writeup consider the keywords tpm sniffing pulse security.

YeOldeStonecat · Sep 27, 2019

fencepost said:
The protection against this is TPM+PIN (or password) for booting.

That's why that is the only way I deploy it...to me, pre-boot PIN is the security.

lenovo encryption

pcpete

Well-Known Member

nlinecomputers

Well-Known Member

Sky-Knight

Well-Known Member

nlinecomputers

Well-Known Member

nlinecomputers

Well-Known Member

pcpete

Well-Known Member

YeOldeStonecat

Well-Known Member

phaZed

Well-Known Member

Your PCMD

Well-Known Member

Rosco

Well-Known Member

fencepost

Well-Known Member

YeOldeStonecat

Well-Known Member

Similar threads