It is something far more uncomfortable: the recovery environment became part of the attack surface Hello. For years, BitLocker has been treated almost like a solved problem. Enable TPM.Encrypt the drive.Sleep peacefully. And to be fair, the encryption itself is still solid. But YellowKey changes the conversation in a much uglier way. Because CVE-2026-45585 does…