Earlier this month, we reported on BitLocker encryption on Home windows 11 24H2, resulting in unaware customers dropping their information. Nevertheless, BitLocker troubles have now hit Home windows 10 as effectively. Following the most recent Patch Tuesday updates launched earlier this week for the month of Could 2025 (KB5058379/ KB5058392 / KB5058383/ KB5058387), customers are reporting that their techniques are working into the BitLocker restoration display upon reboot after the set up. The issue is widespread throughout {hardware} OEMs as Lenovo, Dell, HP customers all report the identical downside.

It is a bug affecting enterprise PCs managed by way of Intune, WSUS, and SCCM and is the second enterprise-related main bug to hit such units this month following the earlier one which blocked the Home windows 11 2024 replace on 22H2/23H2 units.

A consumer mersongeorge on the Microsoft boards opened a thread titled “Could 13 -KB5058379 Home windows 10 results in corruption and endpoints asking for bitlocker key….”

The consumer describes the issue as they write, “the most recent KB5058379 launched Could 13 high quality replace failed in Home windows 10 units. Some units it prompted triggering bitlocker key window after restart. Nonetheless Replace appears failed. Some fall in loop of restarts. ..That is primarily affected units managed by Intune. Lenovo Thinkpad. some circumstances Keyboard is getting disabled and consumer not in a position to cross the bitlocker key.”

Fortuitously, Microsoft is conscious of the bug in KB5058379 and the way it causes restart loops, replace fails, and BitLocker restoration prompts. The corporate additionally supplied a workaround for a similar. The difficulty has been validated on Intel-based Dell Precision 5570 and 5680 fashions. A consumer Callum Hargreaves2 on the identical thread confirmed this. The corporate has recommended that the difficulty is said to Intel’s Trusted Execution Expertise (TXT), however additional investigation is ongoing. Thus, disabling the TXT function in BIOS can doubtlessly repair the difficulty.

The consumer writes:

Subsequent Steps & Suggestions:

• Proceed to maintain affected units with replace set up paused.
• For units already affected and requiring BitLocker restoration, making use of the restoration key and rolling again the replace as you described is the suggested interim measure.
• Disabling TXT in BIOS is one other attainable workaround, however as you famous, it could require distant employees to return in and isn’t very best for giant deployments.
• Microsoft is working to doc the difficulty on the Home windows Launch Well being and Microsoft 365 Admin Middle portals; updates shall be supplied as new data turns into accessible.

For these not acquainted, Intel TXT is a safety function constructed into Intel processors and chipsets. It helps defend computer systems from software program assaults by making certain that purposes run in a secure, remoted area. TXT makes use of hardware-based safety to maintain information safe and incorporates options like Intel PTT (or generally known as TPM) and Safe Boot.