Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Microsoft BitLocker recovery prompt workaround

Advisory/Mitigation
First reported
Last updated
Happening score
H score 25
1 unique sources, 2 articles

Summary

Hide ▲

Microsoft issued a temporary workaround for BitLocker recovery prompts on some Windows systems after recent updates. The issue affects devices configured with a BitLocker Group Policy that includes PCR7 in the TPM validation profile, plus certain Secure Boot and Windows Boot Manager setups tied to the Windows UEFI CA 2023 certificate. Administrators are told to remove the policy setting and suspend and resume BitLocker while Microsoft works on a permanent fix.

Related Happenings

Microsoft Windows Server 2025 and Windows 11 23H2 BitLocker recovery fix

Security Patch Release
H score15 First: 11.06.2026 11:44 Last: 11.06.2026 11:44 Sources 1

How related: During this month's Patch Tuesday, two months after confirming the issue, Microsoft resolved this bug in the KB5094125 (Windows Server 2025) and KB5093998 (Windows 11 23H2) cumulative updates.

About this happening: Microsoft shipped **KB5094125** for **Windows Server 2025** and **KB5093998** for **Windows 11 23H2** to fix a **BitLocker recovery** bug tied to the **April 2026 security update*...

Open Happening

Windows 10 KB5094127 extended security update

Security Patch Release
H score10 First: 09.06.2026 21:35 Last: 09.06.2026 21:35 Sources 1

How related: Microsoft has released the Windows 10 KB5094127 extended security update, which fixes the June 2026 Patch Tuesday vulnerabilities and adds new functionality to monitor the rollout of updated Secure Boot certificates that replace those expiring this month.

About this happening: Microsoft released **Windows 10 KB5094127** for **Windows 10 Enterprise LTSC** and **ESU-enrolled devices**, delivering the **June 2026 Patch Tuesday** security fixes and extendin...

Open Happening

Microsoft Windows Known Issue Rollback guidance for KB5089549

Advisory/Mitigation
H score14 First: 01.06.2026 13:59 Last: 01.06.2026 13:59 Sources 1

About this happening: Microsoft's **Known Issue Rollback** guidance gives **Windows 11** users and admins a workaround for **KB5089549** installation failures caused by low **EFI System Partition (ESP)...

Open Happening

Windows BitLocker YellowKey security feature bypass (CVE-2026-45585)

Vulnerability
H score15 First: 20.05.2026 11:28 Last: 20.05.2026 11:28 Sources 1

About this happening: CVE-2026-45585 (YellowKey) is a BitLocker security feature bypass affecting Windows 11 24H2/25H2/26H1 and Windows Server 2025, including Server Core. Microsoft disclosed the issue...

Latest development: 11.06.2026 20:43

Security researcher Chaotic Eclipse released GreatXML, a Windows BitLocker bypass that copies unattend.xml and Recovery/WindowsRE/ReAgent.xml onto the recovery partition and then boots into Windows Recovery Environment (WinRE) to spawn a shell with unrestricted access to the BitLocker volume. The researcher said the flaw could automatically affect systems that ever used Windows Defender Offline Scan, and the release followed YellowKey (CVE-2026-45585), which Microsoft patched in Patch Tuesday updates.

Open Happening

Windows BitLocker YellowKey mitigation guidance (CVE-2026-45585)

Advisory/Mitigation
H score46 First: 20.05.2026 10:31 Last: 20.05.2026 10:31 Sources 1

About this happening: **Windows BitLocker** **YellowKey** (**CVE-2026-45585**) moved from interim mitigation to patch status after **Microsoft** fixed it in **June 2026 Patch Tuesday**. The **Windows R...

Latest development: 10.06.2026 12:57

On Tuesday, Microsoft fixed YellowKey (CVE-2026-45585) as part of its June 2026 Patch Tuesday updates and shared mitigation measures for the Windows Recovery Environment backdoor. The flaw affects unpatched Windows 11 and Windows Server 2022/2025 systems and can let attackers with physical access bypass BitLocker protection on targeted devices.

Open Happening

Timeline

  1. 09.06.2026 21:35 3 articles · 3d ago

    Microsoft advises BitLocker workaround for affected Windows systems

    Mitigation Patch Update

    Microsoft warns that recent updates can trigger BitLocker recovery prompts on some Windows systems, especially devices using a BitLocker Group Policy that explicitly includes PCR7 in the TPM validation profile and certain Secure Boot and Windows Boot Manager configurations tied to the Windows UEFI CA 2023 certificate. As a temporary workaround, administrators are told to remove the Group Policy setting and then suspend and resume BitLocker to regenerate the default PCR bindings while Microsoft works on a permanent fix.

    Show sources
    Open in new tab