Microsoft Provides FBI with Recovery Keys for Encrypted Data on Laptops
According to a report by Forbes, Microsoft has provided the FBI with recovery keys to unlock encrypted data on the hard drives of three laptops as part of a federal investigation. This action has raised concerns about the privacy and security implications of such practices.
Many modern Windows computers come equipped with full-disk encryption technology known as BitLocker, which is enabled by default. This technology is designed to prevent unauthorized access to data when the computer is locked and powered off.
However, default settings in BitLocker allow for recovery keys to be uploaded to Microsoft’s cloud, giving the company and potentially law enforcement agencies access to decrypt drives encrypted with BitLocker. In the case reported by Forbes, this feature was utilized in a federal investigation related to fraud in Guam’s Pandemic Unemployment Assistance program.
Local news outlets in Guam covered the case, detailing how the FBI requested warrants to access the encrypted data on the suspects’ laptops. Microsoft confirmed that they receive an average of 20 requests per year to provide BitLocker recovery keys to authorities.
Despite the convenience for law enforcement, concerns have been raised about the potential risks associated with storing recovery keys in a centralized cloud infrastructure. Cryptography expert Matthew Green highlighted the threat of malicious hackers compromising Microsoft’s systems and gaining access to these sensitive keys.
In a post on Bluesky, Green emphasized the need for stronger security measures to protect customer data and prevent unauthorized access to encryption keys. The reliance on cloud storage for recovery keys has become a point of contention in the industry, with Microsoft facing scrutiny for its approach to safeguarding critical information.
Don’t miss out on the latest Techcrunch event!
San Francisco
|
October 13-15, 2026
