Microsoft has recently suspended the developer accounts of several prominent open-source projects, preventing maintainers from releasing new software versions and security patches. Affected projects include the VPN software WireGuard, the encryption tool VeraCrypt, the memory diagnostic tool MemTest86, and Windscribe VPN.
VeraCrypt developer Mounir Idrassi stated that his account, used for signing Windows drivers and bootloaders, was abruptly disabled without any prior warning or email notification. He complained on forums that the system information provided by Microsoft indicated the action was not appealable. Despite attempting to reach Microsoft through multiple channels, Idrassi received only automated responses and was unable to connect with a human representative.
Compliance Turmoil Over Mandatory Verification
WireGuard maintainer Jason A. Donenfeld faced a similar predicament when his account was suddenly suspended. He pointed out that such unannounced bans are extremely dangerous; should a critical Remote Code Execution (RCE) vulnerability emerge in WireGuard, developers would be unable to push out a fix in time. Donenfeld is currently navigating a 60-day appeal process but remains pessimistic about the outcome.
Following coverage by tech outlet TechCrunch, Microsoft Vice President Scott Hanselman stepped in to clarify that the accounts were automatically suspended for failing to complete mandatory verification for the "Windows Hardware Program." Microsoft had sent multiple notifications since October 2025, requiring partners who had not verified their accounts since April 2024 to complete the process.
According to an announcement from the Microsoft Hardware Dev Center, the verification window closed on March 30, and accounts that failed to comply were stripped of their privileges to submit software to the Windows Hardware Program. While Microsoft has not explained why clear suspension notices were not sent to the developers, Hanselman has begun intervening to help affected developers restore their account access.
Idrassi and the Windscribe team confirmed that, following media coverage and public pressure on social media, Hanselman reached out to them personally to facilitate account restoration. While updates for these open-source projects on Linux and macOS remain unaffected, the incident has exposed a significant communication gap in Microsoft’s developer ecosystem management for its vast Windows user base.