Microsoft has fixed a security issue that causes Windows PCs to boot into BitLocker recovery mode instead of the normal startup process.
BitLocker is a full disk encryption feature included in some versions of Windows. It is designed to protect data by encrypting entire volumes, preventing unauthorized users from accessing information on the device. The only way to read the files is to provide the correct decryption key.
While the feature is certainly commendable, it appears that Microsoft has cracked it with the latest security update. Users who have enabled the Device Encryption feature are particularly affected.
Affected versions
“After you install the July 2024 Windows Security Update, released on July 9, 2024, you may see a BitLocker recovery screen when you start your device,” Microsoft said. “This screen doesn’t often appear after a Windows update. You’re more at risk for this issue if you have the Device encryption option turned on in Settings under Privacy & security -> Device encryption.”
These are the versions of Windows OS affected by the bug:
Client: Windows 11 version 23H2, Windows 11 version 22H2, Windows 11 version 21H2, Windows 10 version 22H2, Windows 10 version 21H2.
Server: Windows Server 2022, Windows Server 2019, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2, Windows Server 2008.
Redmond has now released a fix and invited all users to apply it: “We recommend that you install the latest update for your device because it includes important improvements and bug fixes, including this one,” Microsoft said.
As explained by BleepingComputerBitLocker recovery mode is only activated when the PC detects hardware changes or Trusted Platform Module (TPM) updates, allowing access to protected drives. Users can find their BitLocker recovery key by signing in to the BitLocker recovery screen portal with their Microsoft account.