Security Concerns Mount as Microsoft Locks Out Essential Open Source VPN and Encryption Developers

Microsoft suspends WireGuard and VeraCrypt developer accounts without warning, blocking critical security updates for millions of Windows users.

By: AXL Media

Published: Apr 9, 2026, 4:29 AM EDT

Source: Information for this report was sourced from Seattle Today

Abrupt Suspensions Halt Secure Software Delivery

The creator of the popular open source WireGuard VPN, Jason Donenfeld, has been barred from his Microsoft developer account, a move that prevents the signing of drivers necessary for the software to operate on Windows. This incident is not isolated, as it follows a similar lockout experienced by the maintainers of the VeraCrypt encryption tool. Without the ability to officially sign software builds, these developers are effectively prevented from shipping updates, leaving their massive user bases potentially stranded without the ability to receive future security patches or performance improvements.

Reliance on Third Party Ecosystems Under Scrutiny

The lockout highlights a growing vulnerability for independent and open source developers who must navigate the mandatory verification requirements of tech giants like Microsoft. To ship software that interacts with the Windows kernel, such as VPNs or encryption utilities, developers must participate in the Windows Hardware Program. When these accounts are terminated without warning, it creates a bottleneck that can leave millions of users exposed to hypothetical vulnerabilities that cannot be addressed through traditional update channels.

Communication Breakdown Leaves Developers in Limbo

According to Jason Donenfeld, the suspension occurred without prior notice or an explanation of what triggered the action. Despite Microsoft’s claims of a mandatory identity verification rollout, Donenfeld asserts that he found no record of notification in his emails or logs. Other privacy focused entities, such as the VPN maker Windscribe, have reported similar experiences, describing Microsoft’s support as non existent and largely managed by automated systems that fail to provide a clear path for appeal or resolution for weeks at a time.