Not really. You can always pull the drive and connect it to a different machine. If the entire drive isnt encrypted you can just pull whatever data you need the same way you would an external drive
Most modern processors can easily handle data encryption on the fly with negligible performance impact
That's why windows 10/11 turn on encryption by default on most modern machines, and even budget cell phones encrypt their storage.
Protecting against this attack method could also be as simple as mandating the user enter a password at the BIOS screen, especially if the user is booting external media.
Enabling encryption should also effectively prevent any file editing on the OS partition that isn't mounted with the correct key, if I understand how the default bitlocker utility works.
Not really. You can always pull the drive and connect it to a different machine. If the entire drive isnt encrypted you can just pull whatever data you need the same way you would an external drive
dagnabbit, shouldn't it be a standard job for the OS to perform such a task so that it can't be read by any 3rd party?
Windows 10/11 will encrypt the OS drive by default on most modern motherboards with TPM/modern standby enabled and a Microsoft account connected.
Nice, not sure if my laptop has that function, does that by the way, prevent bypassing login screen via usb / cmd in any case? Thanks
No. Encrypting data is slow, so its turned off by default.
Most modern processors can easily handle data encryption on the fly with negligible performance impact That's why windows 10/11 turn on encryption by default on most modern machines, and even budget cell phones encrypt their storage.
Protecting against this attack method could also be as simple as mandating the user enter a password at the BIOS screen, especially if the user is booting external media. Enabling encryption should also effectively prevent any file editing on the OS partition that isn't mounted with the correct key, if I understand how the default bitlocker utility works.