One more thing you don’t want to know about bitlocker..
This week I found another item to add to my infamous “10 Things You Don’t Want to know about Bitlocker” post – research just published by Synopsys hacker Ian Hakan shows there’s been a trivial bypass for Bitlocker without pre-boot for a long time – seemingly since 2000!
So No. 11 – If you don’t use pre-boot Bitlocker can be easily bypassed by someone with a rogue domain server.
Thankfully Microsoft jumped in with a fix in MS15-122 security bulletin – but you have to wonder if this exploit has been known by certain parties for longer?