Oh man, I always thought if your drive was already encrypted that a hostile actor couldn’t encrypt it for ransomware. I don’t know where I read that but it was a long time ago and I guess someone lied to me, but it’s whatever.

So what’s the vulnerability that would be exploited, something about using the swap space to get into the encrypted drive? Or does the attack apply to the outside of the container? I’m curious cause I’m working on hardening my own system currently and I want to make sure I’m not leaving any gaps in my blind spots