will want to incorporate these patches on the Windows platform:
https://github.com/veracrypt/VeraCrypt/commit/9b24da3398581da1fa66c6b8f682bbcfa7ded4fd
https://github.com/veracrypt/VeraCrypt/commit/b7f9df6e4f09ba342fdbbadc63af5062cc57eaf2
So yeah, apparently you can get full admin rights through the driver. oops.
I was thinking of upgrading to VeraCrypt. Do you know of any issues or “additions” to VeraCrypt that might compromise its sercurity? I’ve heard of another alternative, CipherShed, where it’s claimed that it is compromised (mainly those claims come from the coders of VeraCrypt). I’m no security expert so I don’t know what to believe!
Trust no one! Believe nothing!
I think the only advice I could ever give on security that would ever hold water, is to never put all your trust in a single product. It’s a single attack vector.
But now we live in a hyper virtualized world, how do you know your machine is real?
This is only a security risk on a multi-user system where some users don’t have administrative rights.