Windows 11 Automatically Blocks Brute Force Attacks 

July 22, 2022

Microsoft has enabled the Account Lockout Policy by default in Windows 11. The security measure will automatically lock user accounts (including Administrator accounts) after 10 failed login attempts for 10 minutes.

This enables Microsoft to block attackers using brute force process to get into a system. Brute force primarily means guessing passwords with the help of automated tools.

According to David Weston, Microsoft’s VP for Enterprise and OS Security, brute forcing credentials is a popular tactic among threat actors. Attackers use brute force to infringe Windows systems via Remote Desktop Protocol (RDP) whenever they do not know the passwords of the account.

“This technique is very commonly used in Human Operated Ransomware and other attacks – this control will make brute forcing much harder which is awesome,” said Weston.

Account Lockout Policy is available on Windows 10 systems although not enabled by default. Administrators can configure the policy on Windows 10 in the Group Policy Management Console from Computer Configuration\Policies\Windows Settings\Security Settings\Account Policies\Account Lockout Policy.

Other security changes introduced by Microsoft include the automatic blocking of Office macros in downloaded documents and the enforcement of multifactor authentication (MFA) in Azure AD.

The sources for this piece include an article in BleepingComputer.

Top Stories

Related Articles

June 26, 2026 Ford Motor Co. turned to veteran engineers to tackle persistent vehicle quality problems after finding that artificial more...

June 26, 2026 Meta's chief technology officer says employee morale has fallen to one of the lowest levels in the more...

June 26, 2026 Memory chip maker Micron says it has signed 16 long-term strategic customer agreements that include price floors more...

June 26, 2026 IBM says it has developed the world's first functional sub-1 nanometre computer chip, marking what the company more...

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn