From Stolen Laptop to Inside The Company Network

https://dolosgroup.io/blog/2021/7/9/from-stolen-laptop-to-inside-the-company-network

• FDE encryption key is stored in the TPM
• TPM is heavily locked down, but all data coming from it is in plaintext, and can be captured by:

This is incredibly impressive engineering!