Skip to main content
  1. Home
  2. Computing
  3. News

Windows 11 now stops brute force cyberattacks right in their tracks

Nathan Drescher
By

Not all threats to your computer come from viruses and dodgy emails. Some people will simply try to smash their way into your PC by generating as many passwords as possible until they gain access, like a lock picker. Windows 11 can now stop that.

The most recent Windows 11 build blocks these brute force attacks with an Account Lockout Policy. Windows will automatically lock down accounts, including administrator accounts, after 10 failed login attempts.

Recommended Videos

“Win11 builds now have a default account lockout policy to mitigate RDP and other brute force password vectors.” said David Weston, Microsoft vice president of Sscurity and enterprise in a tweet earlier today. “This technique is very commonly used in Human Operated Ransomware and other attacks — this control will make brute forcing much harder, which is awesome!”

Related

@windowsinsider Win11 builds now have a DEFAULT account lockout policy to mitigate RDP and other brute force password vectors. This technique is very commonly used in Human Operated Ransomware and other attacks – this control will make brute forcing much harder which is awesome! pic.twitter.com/ZluT1cQQh0

— David Weston (DWIZZZLE) (@dwizzzleMSFT) July 20, 2022

Brute force attacks are a common threat to computers, especially enterprise-level networks with hundreds of employees making their own easy-to-remember passwords. Threat actors employ automated password generators that attempt to login into a computer by generating billions of password combinations. Some programs are sophisticated enough to remember which letter and number combinations were a “hit” and then continue shuffling the remaining characters until it hits on the full password.

Unlike email phishing malware, brute force attacks are operated by a person on the other end who is specifically targeting the victim’s computer or network. Once in, they can load ransomware directly into the network and lock up all the devices tied to it until money is paid. These attacks make up 70% to 80% of all enterprise network breaches, according to the FBI.

With Account Lockout Policy, Microsoft puts an end to brute force. The attackers will get locked out after 10 failed attempts to guess the password, which will happen in a matter of seconds. This feature is available on the most recent Windows 11 builds, from Insider Preview 22528.1000 and newer. In addition to Windows 11, the feature is also coming to Windows 10, although it will not be turned on by default.

Editors' Recommendations

Topics
Nathan Drescher
Nathan Drescher
Former Digital Trends Contributor
Nathan Drescher is a freelance journalist and writer from Ottawa, Canada. He's been writing about technology from around the…
A new Windows 11 hardware system requirement may be incoming
A man sits, using a laptop running the Windows 11 operating system.

Microsoft appears to finally be putting its foot down on how far back it's willing to go when it comes to supporting older hardware. As of the upcoming Windows 11 24H2 build, Microsoft will require that your processor supports the POPCNT instruction. If you're wondering what that is and whether this will affect you, you're not alone.

This new addition was spotted by Bob Pony on X (formerly Twitter). According to the user, if the CPU doesn't support the POPCNT instruction or it's disabled, Windows won't work at all. Multiple system files now require this instruction, starting with the Windows 11 kernel. Long story short -- no POPCNT, no Windows 11 24H2.

Read more
How to start Windows 11 in Safe Mode
Windows 11 on a tablet.

If your Windows 11 PC is having issues, one way to troubleshoot those issues is start your PC in Safe Mode. Safe Mode is essentially a very basic version of Windows 11, without all the bells and whistles and only a restricted set of features, drivers, and files. This mode essentially lets you take a look at your computer and helps you figure out exactly what issue is plaguing your PC.

But booting into Safe Mode on Windows 11 isn't as easy as just pressing a single button. You'll need to navigate through a series of menus first and the method for getting there depends on your PC specific situation (Is your PC still working or is it just a blank or black screen?).

Read more
How to remove a Microsoft account from Windows 11
Windows 11 updates are moving to once a year.

While many people love porting their Microsoft account to their new Windows 11 PC, just as many hate the experience. One of the nicest things about having a new computer is how little tabs it has over you, and letting Microsoft in from the beginning — especially in a way that feels required — is a bit letdown for privacy-minded people.

To make matters worse, getting rid of your account feels tricky. It not only feels like it, Microsoft is your direct antagonist in getting the privacy you want. Luckily, you can make a local account that is disconnected from the rest of your life to gain back the personal feel of your computer. Here's how:
Removing a Microsoft account from Windows 11

Read more