Microsoft is reportedly giving BitLocker keys to law enforcement
Simon Batt, XDA Developers, 1/24/26
Data encryption has always experienced an unwinnable balancing act. If a service is too insecure, people’s personal data and files get leaked, and they demand better protocols. If a service is too secure, the users are happy, but it also prevents law enforcement from checking people’s data for criminal activity.
Well, if a recent report is to be believed, Microsoft has made a decision that will likely make privacy advocates angry. Forbes has claimed that Microsoft has recently revealed BitLocker encryption keys to the FBI to help it with an investigation, and it may change how people approach the platform.
Microsoft revealed BitLocker keys to the FBI, claims Forbes
If true, it may mean a big shift in how people use it
While Microsoft has not officially announced that this happened, Forbes is claiming that the company recently revealed BitLocker keys to the FBI to help it with an investigation. When people encrypt their data with BitLocker, they have the option to save the key on their own hardware. This, Forbes claims, makes it impossible for Microsoft to abide by investigation requests for encryption keys.
However, Microsoft also offers a service where users can store their keys in its cloud storage. While this is useful for when someone loses the key or forgets their password, Forbes claims that Microsoft can hand it over to an investigation request if asked. Forbes says that it got in touch with Microsoft spokesperson Charles Chamberlayne, who had the following to say:
“While key recovery offers convenience, it also carries a risk of unwanted access, so Microsoft believes customers are in the best position to decide… how to manage their keys.”
Charles says that Microsoft gets 20 encryption key requests a year, which the company cannot provide due to users storing the key themselves. If this case is real, this would be the first time Microsoft has ever surrendered a BitLocker key in an investigation.
Senator Ron Wyden made a statement to Forbes saying that it’s “simply irresponsible for tech companies to ship products in a way that allows them to secretly turn over users’ encryption keys.” If this story does turn out to be true, we may see people refuse to entrust their encryption keys to cloud storage services. And while some would argue that this should have been the case from the very start, it’ll likely be a wake-up call for people who entrust sensitive information on company servers.
We’ve reached out to Microsoft for a statement, so stay tuned while we wait for a response.