Riaan I-Microsoft ilungise ubungozi ku-Windows Recovery Environment (WinRE) Windows 10 kanye nezinhlelo eziyi-11 ezingavumela ukufinyelela kwedatha ebethelwe kumadivayisi okugcina.
Onjiniyela bakwaRedmond badale isampula yeskripthi se-PowerShell ukunika amandla amabhizinisi ukuthi abuyekeze ngokuzenzakalelayo izithombe ze-WinRE ukuze avikele amadivayisi we-Windows ekubeni sengozini ye-BitLocker yokuvikeleka kwe-bypass elandelwa ngokuthi I-CVE-2022-41099.
Kunezinguqulo ezimbili zeskripthi (KB5025175), okufanele iqhutshwe ngeziqinisekiso zomlawuli ku-PowerShell, inkampani iyabhala. Inguqulo eqine kakhulu – i-PatchWinREScript_2004plus.ps1 – eyamadivayisi asebenzayo Windows 10 2004 nakamuva, okuhlanganisa i-Windows 11. Enye – i-PatchWinREScript_General.ps1 – iqondiswe kulabo abane-Windows 10 i-v1909 nangaphambili.
IMicrosoft ikhiphe iseluleko mayelana nokuba sengozini ngoNovemba 2022 futhi yabuyekeza isaziso ngoFebhuwari.
Akulula ukuthi abahlaseli basebenzise iphutha, ngokusho kweMicrosoft. Uma idivayisi ivikelwe yi-BitLocker TPM+PIN, izigebengu zizodinga ukwazi iphinikhodi ye-TPM ukuze zingene ohlelweni. Imodi ye-TPM+PIN yokuqinisekisa izinto eziningi (i-MFA) isebenzisa izingxenyekazi zekhompuyutha zokuvikela ze-TPM (Trusted Platform Module) kanye ne-PIN ukuze uqinisekise abasebenzisi. Kule modi, abasebenzisi kufanele bafake iphinikhodi endaweni ye-Windows pre-boot noma kunini lapho ikhompuyutha iqala.
“I-TPM iyingxenye yehadiwe efakwe kumakhompyutha amaningi amasha ngabakhiqizi bamakhompyutha,” kubhala iMicrosoft idokhumenti ngoFebhuwari. “Isebenza ne-BitLocker ukusiza ukuvikela idatha yomsebenzisi kanye nokuqinisekisa ukuthi ikhompuyutha ayizange iphazanyiswe ngenkathi isistimu ingaxhunyiwe ku-inthanethi.”
Nokho, uma umhlaseli engena ohlelweni, angabangela umonakalo othile.
“Umhlaseli ophumelele angakwazi ukweqa isici se-BitLocker Device Encryption kudivayisi yokugcina uhlelo,” kubhala inkampani. “Umhlaseli onokufinyelela ngokomzimba kulokho okuqondiwe angasebenzisa lobu bungozi ukuze athole ukufinyelela kudatha ebethelwe.”
Iphutha lingasetshenziswa kuphela kumasistimu ane-winre.wim ekuhlukaniseni kokutholwa.
Imibhalo yenza izinhlangano zikwazi ukunquma igama lephakheji yesibuyekezo se-OS Dynamic esetshenziselwa ukubuyekeza isithombe se-WinRE. Iphakheji yokubuyekeza ye-OS Dynamic, etholakala ku- Ikhathalogi Yokuvuselela IWindowsinguqulo ye-OS- kanye ne-architecture-specific, ngakho ukukhetha efanele kubalulekile.
Iphakheji kufanele ilandwe ngaphambi kokuba iskripthi sisetshenziswe. Uma iskripthi sesiqalisiwe, uma umvikeli we-BitLocker TPM ekhona, izolungisa kabusha i-WinRE yesevisi ye-BitLocker.
I-BitLocker iyithuluzi elibalulekile elisetshenziswa yiMicrosoft ukugcina idatha ivikelekile.
“I-BitLocker isiza ukunciphisa ukufinyelela kwedatha okungagunyaziwe ngokuthuthukisa ukuvikelwa kwamafayela nohlelo,” kunezela inkampani. “I-BitLocker isiza futhi ngokwenza idatha ingafinyeleleki lapho amakhompyutha avikelwe yi-BitLocker enqanyulwa noma esetshenziswa kabusha.” ®
