I swear, half the CVEs I hear about are “if your computer is connected to the internet and someone sends you a text message, they now have your power of attorney”
and the other half is “if a trained thief were to sneak into your house and replace your hard drive with an identical copy, an attacker with an exact predictive model of that drive could interrogate the SSD wear leveling algorithm and reduce the search space for your bitlocker password by up to 12 bits _without you even noticing_”
@ktemkin OMG and if you ask for a proof of concept to clarify if they really do have to break into your house, the “reporter” gets so fucking pissed off.
Do not miss that part.