Microsoft has launched an emergency out-of-band replace (KB5061768) to handle a vital difficulty inflicting Home windows 10 methods besides into BitLocker restoration screens following the set up of the Might 2025 safety updates.
The repair, launched on Might 19, comes after quite a few experiences from enterprise prospects experiencing system lockouts and boot loops that required BitLocker restoration keys to regain entry.
Home windows 10 BitLocker Repair
The issue emerged after the set up of Home windows 10 KB5058379 safety replace from Might 13, 2025, which brought about the Native Safety Authority Subsystem Service (LSASS) to terminate unexpectedly on affected methods.
This termination triggered Automated Restore processes that required BitLocker restoration keys, with some methods getting into persistent boot loops even after key entry.
“On affected units, upon putting in the replace, Home windows would possibly fail to start out sufficient occasions to set off an Automated Restore,” Microsoft defined in its launch well being replace.
“On units with BitLocker enabled, BitLocker requires the enter of your BitLocker restoration key to provoke an Automated Restore”.
The difficulty impacts methods operating Home windows 10 model 22H2, Home windows 10 Enterprise LTSC 2021, and Home windows 10 IoT Enterprise LTSC 2021 with Intel vPro processors (tenth technology or later) which have Intel Trusted Execution Expertise (TXT) enabled.
Most client units operating Residence and Professional editions of Home windows 10 stay unaffected as they usually don’t use Intel vPro processors.
Programs experiencing the issue displayed Occasion ID 20 in Home windows Occasion Viewer with error code 0x800F0845, alongside Occasion ID 1074 reporting surprising termination of lsass.exe with standing code -1073740791.
The emergency replace KB5061768 (OS Builds 19044.5856 and 19045.5856) is accessible completely by way of the Microsoft Replace Catalog and is designed as a cumulative replace, that means customers don’t want to put in earlier updates earlier than deploying this repair.
Microsoft recommends that affected organizations obtain and set up the replace instantly to resolve the problem.
For methods unable besides as a result of BitLocker immediate, Microsoft suggests briefly disabling Intel VT for Direct I/O (VTD/VTX) and Intel Trusted Execution Expertise (TXT) in BIOS/UEFI settings.
After disabling these options, methods ought to boot efficiently, permitting directors to put in the KB5061768 replace.
Following set up and restart, the Intel security measures could be re-enabled, although this may require getting into the BitLocker restoration key as soon as extra.
“Microsoft Help doesn’t have the power to retrieve, present, or recreate a misplaced BitLocker restoration key,” the corporate emphasised, underscoring the significance of organizations sustaining safe backups of their BitLocker restoration keys.
This emergency launch comes as Microsoft continues preparation for Home windows 10’s finish of assist on October 14, 2025.
After this date, Microsoft will now not present free software program updates, technical help, or safety fixes for Home windows 10.
The KB5061768 replace additionally contains the newest servicing stack replace (SSU KB5058526) for builds 19044.5853 and 19045.5853, enhancing the reliability of the replace course of for future installations.
For organizations not sure in the event that they’re affected by this difficulty, Microsoft notes that the issue primarily impacts enterprise environments using particular Intel security measures, and people not experiencing BitLocker restoration prompts don’t want to put in the emergency replace.
Vulnerability Assault Simulation on How Hackers Quickly Probe Web sites for Entry Factors – Free Webinar
