June’s Patch Tuesday closed two BitLocker bypasses, YellowKey (CVE-2026-45585) and CVE-2026-50507, both letting anyone with physical access read a TPM-only encrypted drive. Here is what they mean for lost and stolen devices, and the BitLocker config changes to make now.
Chrome on Windows Just Shipped Two Local Privilege Escalation Fixes: What CVE-2026-7948 and CVE-2026-7994 Mean For Your Endpoints
Endpoint Privilege Management Lands in Your E5 License on July 1: A Practical Plan to Retire Local Admin
YellowKey BitLocker Bypass (CVE-2026-45585): Why TPM-Only Encryption Won’t Save a Stolen Laptop