Skip to main content

Windows 11 now stops brute force cyberattacks right in their tracks

Not all threats to your computer come from viruses and dodgy emails. Some people will simply try to smash their way into your PC by generating as many passwords as possible until they gain access, like a lock picker. Windows 11 can now stop that.

The most recent Windows 11 build blocks these brute force attacks with an Account Lockout Policy. Windows will automatically lock down accounts, including administrator accounts, after 10 failed login attempts.

Recommended Videos

“Win11 builds now have a default account lockout policy to mitigate RDP and other brute force password vectors.” said David Weston, Microsoft vice president of Sscurity and enterprise in a tweet earlier today. “This technique is very commonly used in Human Operated Ransomware and other attacks — this control will make brute forcing much harder, which is awesome!”

Please enable Javascript to view this content

@windowsinsider Win11 builds now have a DEFAULT account lockout policy to mitigate RDP and other brute force password vectors. This technique is very commonly used in Human Operated Ransomware and other attacks – this control will make brute forcing much harder which is awesome! pic.twitter.com/ZluT1cQQh0

— David Weston (DWIZZZLE) (@dwizzzleMSFT) July 20, 2022

Brute force attacks are a common threat to computers, especially enterprise-level networks with hundreds of employees making their own easy-to-remember passwords. Threat actors employ automated password generators that attempt to login into a computer by generating billions of password combinations. Some programs are sophisticated enough to remember which letter and number combinations were a “hit” and then continue shuffling the remaining characters until it hits on the full password.

Unlike email phishing malware, brute force attacks are operated by a person on the other end who is specifically targeting the victim’s computer or network. Once in, they can load ransomware directly into the network and lock up all the devices tied to it until money is paid. These attacks make up 70% to 80% of all enterprise network breaches, according to the FBI.

With Account Lockout Policy, Microsoft puts an end to brute force. The attackers will get locked out after 10 failed attempts to guess the password, which will happen in a matter of seconds. This feature is available on the most recent Windows 11 builds, from Insider Preview 22528.1000 and newer. In addition to Windows 11, the feature is also coming to Windows 10, although it will not be turned on by default.

Nathan Drescher
Former Digital Trends Contributor
Nathan Drescher is a freelance journalist and writer from Ottawa, Canada. He's been writing about technology from around the…
Microsoft won’t back down on Windows 11’s biggest hurdle
The Surface Pro 11 on a white table in front of a window.

Microsoft has reaffirmed that it will not lower the minimum hardware requirements for Windows 11, solidifying the need for a Trusted Platform Module (TPM) 2.0 and a compatible CPU. This decision leaves many older PCs ineligible for the upgrade. Microsoft emphasizes that these standards are vital for improved security and performance.

As per a recent blog post titled “TPM 2.0 – a necessity for a secure and future-proof Windows 11,” Microsoft reaffirmed its decision not to relax Windows 11’s strict hardware requirements. TPM 2.0 is a hardware-based security feature that protects sensitive data and ensures secure boot processes. Microsoft argues that such measures are nonnegotiable as the company continues to address rising cybersecurity threats. The minimum requirements include a list of approved CPUs, starting from AMD Ryzen 2000 and Intel 8th Gen processors, that offer advanced security features and better performance efficiency.

Read more
Microsoft warns that the latest Windows 11 update may crash PC games now
Gaming PC on a desk.

Microsoft has once again temporarily halted the rollout of its latest major Windows 11 update, also known as 24H2. This time it is for systems running select Ubisoft games following widespread user reports of crashes and performance issues. The affected titles include Assassin's Creed Valhalla, Assassin's Creed Origins, Assassin's Creed Odyssey, Star Wars Outlaws, and Avatar: Frontiers of Pandora.

Common complaints include black screens, freezing, and unresponsiveness during gameplay or while loading these titles. "I just bought a new gaming laptop with RTX 4080, Intel i9 14900hx. I can't play the game (Origins) even for 5 minutes because it crashes to a black screen, with audio, and the only way to close it is from task manager. Impossible to play," one user shared on Reddit. Others reported similar frustrations, citing the persistent error “NTDLL.dll” that renders their games unplayable.

Read more
Nearly six months later, you can finally try out Windows 11 Recall
Recall promotional image.

After a tumultuous initial reaction and months of reworking, Microsoft is finally releasing the first preview of its controversial Recall feature today. If you're a Windows Insider with a Qualcomm Copilot+ PC, you can install a new build of Windows 11 that includes both Recall and Click to Do.

If you're not part of the Windows Insider Program but you want to try out this feature, it's pretty easy to sign up on the Microsoft website. Recall was first announced back before any of the Copilot+ PCs were released and was meant to be available at launch, but an outcry of privacy and security concerns forced Microsoft to delay it.

Read more