Researcher Drops YellowKey, GreenPlasma Windows Zero-Days

📅 14 May 2026 at 07:27 UTC📰 Security WeekView original source ↗

YellowKey is a BitLocker bypass that requires physical access. GreenPlasma enables elevation of privileges to System. The post Researcher Drops YellowKey, GreenPlasma Windows Zero-Days appeared first on SecurityWeek.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

A researcher has publicly disclosed two Windows zero-day vulnerabilities, YellowKey and GreenPlasma, which allow for BitLocker bypass and privilege escalation respectively, posing a significant risk to systems with physical access.

⚙️Technical Details

Affected Systems

Windows

Attack Vectors

physical access

💥Impact Assessment

Severity: critical

Who Is at Risk

Systems with physical access

🛡️Recommended Actions

1Implement BitLocker encryption and ensure proper key management practices.

2Regularly update Windows operating systems to patch any newly disclosed vulnerabilities.

3Conduct thorough vulnerability assessments for systems with physical access.

📦Affected Products

Product Name: Windows

Read the full article

This is a curated summary. The complete article is available at Security Week.

Read on Security Week ↗

← Back to feed