Today i took my first steps into the world of Linux by creating a bookable Mint Cinamon USB stick to fuck around on without wiping or portioning my laptop drive.

I realised windows has the biggest vulnerability for the average user.

While booting off of the usb I could access all the data on my laptop without having to input a password.

After some research it appears drives need to be encrypted to prevent this, so how is this not the default case in Windows?

I’m sure there are people aware but for the laymen this is such a massive vulnerability.

  • redlemace@lemmy.world
    45·
    20 hours ago

    Same in Linux. No disk encryption and everything is easy accessible if you have physical access.

    • Fonzie!@ttrpg.network
      3·
      9 hours ago

      Unless someone ticked the “encrypt storage”-box in the installer, you don’t even have to pay for Pro to use it!

    • Aussiemandeus@aussie.zoneOP
      9·
      20 hours ago

      Physical access wouldn’t seem so hard. Say you worked at the company company and wanted to get the files your boss has on your evaluation or something. Wait till they’re on lunch, plug in a usb and pull them up.

      I imagine patient records wouldn’t be encrypted either

      • Jhex@lemmy.world
        1·
        3 hours ago

        such a “hack” would only work in a poorly written tv show

        an unencrypted drive is like being able to look into a bank though a window, not ideal but things of value could/should/would still be in a safe or somewhere else completely

      • oo1@lemmings.worldEnglish
        1·
        5 hours ago

        I imagine patient records wouldn’t be encrypted either

        If computerised, they freaking well should be.

        In general they’d be in a database with it’s own accesss control to interfaces and the databases data store should be encrypted. In my country there are standards for all healthcare IT systems that would include encryption and secure message exchange between systems. If they breached those they’d be in trouble.

        If your doctor has a paper file in a filing cabinet on premises, written in English, then yes. The security is only the physical locks, just like your hme pc.

      • vandsjov@feddit.dk
        24·
        19 hours ago

        Any respectable company with Windows would be using BitLocker - full disk encryption. It’s super easy to setup if your computer has TPM, fully transparent for the user in most cases.

        • o_d [he/him]@lemmygrad.mlEnglish
          1·
          18 hours ago

          My work macbook won’t even let me mount an external storage device, but it doesn’t seem to care about my nextcloud client running in the background. Sorry for my blasphemous behaviour my cyber security comrades 🫡🥺