Microsoft has told Forbes that it will share BitLocker encryption keys with the FBI if presented with a legitimate court order. These keys unlock data on Windows computers, allowing law enforcement to access information even if it’s been encrypted.
According to Forbes, Microsoft provided the FBI with encryption keys to unlock a device in Guam. Law enforcement suspected this device held evidence related to a scheme to steal funds from the island’s Covid-19 unemployment assistance program, and this happened in early 2025.
The device could be unlocked because its BitLocker encryption key was saved online. Windows 11 automatically links this key to your Microsoft account, making it easier to recover your data if you’re locked out. While you can turn this feature off, the default setting is to store the key securely in Microsoft’s cloud.
Microsoft believes users are best suited to decide how to manage their encryption keys, acknowledging that while key recovery is convenient, it could also allow unauthorized access. “Customers are in the best position to decide… how to manage their keys,” said Microsoft spokesperson Charles Chamberlayne in a statement to Forbes.
As a tech enthusiast, I recently read that Microsoft gets about 20 requests a year from the FBI for BitLocker encryption keys. It’s interesting, but apparently, Microsoft can’t actually help with most of these requests! They said the reason is that the encryption key wasn’t saved to their cloud in the first place, so they just don’t have it.
This situation is significant because other tech companies, like Apple, have historically resisted requests from law enforcement to access data on their devices. Apple has even publicly clashed with the FBI in the past over demands to create a backdoor into iPhones.
I have to say, I’m really surprised to learn that encryption keys sent to Microsoft aren’t also encrypted while they’re stored in the cloud. It seems like that leaves the keys exposed, meaning Microsoft could potentially access them. That’s a serious privacy concern for anyone using the service, as it undermines the whole point of encryption.
It’s worrying that Microsoft is so readily giving access to the encryption keys for Windows computers. Anyone using Windows should reconsider automatically backing up those keys to the cloud. You can check on the Microsoft Account website to see if your computer’s BitLocker keys are stored on Microsoft’s servers and delete them if necessary.
Stay up-to-date with the latest from Windows Central by following us on Google News! You’ll get our news, insights, and features right in your feed.
Read More
- Trails in the Sky 2nd Chapter launches September 17
- Solo Leveling’s New Character Gets a New Story Amid Season 3 Delay
- HBO Max Just Added the Final Episodes of a Modern Adult Swim Classic
- All 7 New Supes In The Boys Season 5 & Their Powers Explained
- PRAGMATA ‘Eight’ trailer
- Pragmata Shows Off Even More Gorgeous RTX Path Tracing Ahead of Launch
- Crimson Desert’s Momentum Continues With 10 Incredible New Changes
- Hulu Just Added One of the Most Quotable Movies Ever Made (But It’s Sequel Is Impossible To Stream)
- Frieren: Beyond Journey’s End Gets a New Release After Season 2 Finale
- ‘Project Hail Mary’: The Biggest Differences From the Book, Explained
2026-01-24 05:09