The forced Microsoft Account requirement and BitLocker auto encryption can lead to catastrophic issues on Windows if you aren't careful, and especially in the case of a lockout.
  • Rentlar@lemmy.ca
    40·
    14 days ago

    Forced bitlocker encryption without keeping the keys in a separate area accessible to you, is just adding ransomware to your own device.

  • Railcar8095@lemm.ee
    21·
    14 days ago

    The title is wrong. Most, if not all new phones have forced encryption. Macs have forced encryption (I think can be disabled, but it’s encrypted by default).

    Windows shows how crap software can lose you data.

    • Ptsf@lemmy.world
      1·
      12 days ago

      this Encryption should be under good design circumstances, transparent. I’d wager that almost all apple operating system users have little to no idea everything is locally encrypted.

  • some_guy@lemmy.sdf.orgEnglish
    8·
    14 days ago

    This is why I have multiple backups. But I’m a nerd who likes computers and has money. Not everyone has the means or knowledge to do the same. Users are getting screwed more and more by corporations and the decisions they force on their customers. Capitalism is long past the part where we could pretend that it was good for regular people. We’re in the finding-out phase from here on.

    • Zedd_Prophecy@lemmy.worldEnglish
      7·
      14 days ago

      I am a nerd without money - I have 3 drives 2 that live offsite. 6gb humble spinny drives. Everything that’s important to me gets copied to these drives- I’m not using any fancy software - its a cut and paste job from a few Linux laptops and a desktop. I still have all my original wav file and games backup from 1998 with this method ( though then they were on 10 zip discs ) It just takes a little due diligence to back up your data.

        • Zedd_Prophecy@lemmy.worldEnglish
          2·
          7 days ago

          Until you got the click of death. - happened to me… luckily even back then I had a copy. Get your friends to host a copy of your stuff offsite and offer to do the same for them. We even share a drive of music we send around every couple years. Everyone benefits.

        • 4am@lemm.ee
          31·
          14 days ago

          Isn’t Microsoft pushing everyone to host their AD on Azure now?

          • HubertManne@piefed.socialEnglish
            1·
            14 days ago

            I mean even if not its a virtual machine but they should still have control and backup/disaster recovery. So they could mass download all keys and encrypt it and put it on some other storage. I mean things like that should be done but as a tech person who has worked with this kind of thing I never am really satisfied with any backup and disaster recovery I have come across. Scratch that. Cars.com did a pretty good job overall and I imagine some other large corps do but its amazing how many don’t.

          • Lee Duna@lemmy.nzOPEnglish
            1·
            14 days ago

            yep, in several countries including where I live. Several government institutions and state-owned companies have been using M$ Azure since 2 years ago.

  • Phoenixz@lemmy.ca
    3·
    14 days ago

    It’s all right, people!

    Just backup your data on another non encrypted device, or back it up on the Microsoft cloud where it’s absolutely safe from prying eyes, pinky promise!

    Seriously, if you’re using Microsoft windows I will think less of you and you’re getting exactly what you paid for.

  • stray@pawb.social
    2·
    14 days ago

    I don’t think I grasp this at all. They say the encryption is forced, so that means that I can’t just access my files with Linux or whatever? But then at the end they say to use an extra hard drive as backup, so that can’t be right. Is their problem that the cloud storage is encrypted? Wouldn’t it be a huge, glaring issue if it wasn’t? Regardless, I would expect to be locked out of my files on a cloud storage service I got locked out of, so I don’t know what encryption has to do with it. I don’t get it.

    • towerful@programming.dev
      5·
      14 days ago

      I had an offline windows account on my laptop.
      I was freelancing for a company that gave me a Microsoft account.
      I logged into teams, but was very careful not to assign my laptop to that account. I had to use teams, but I didn’t want my client to manage my device.

      Shortly after I installed Linux, which broke windows bitlocker, and I had to get my bitlocker key.
      I hadn’t set up bitlocker, I wasn’t expecting it. As far as I was concerned, I had bricked my device.
      On a hunch of “hmm, maybe”, I checked my Microsoft account from the client, and it has a bitlocker key which unlocked my windows install.

      At which point, I disabled bitlocker and now primary Linux.
      But yeh, in my experience bitlocker is transparently applied during windows install and you never know your bitlocker key. If you never log in to a Microsoft account, you will never be able to recover it if you don’t save it in advance. And if you don’t know its happened, why would you know to save it in advance?!
      The fact that I was able to recover my bitlocker key for my offline/local windows account because I had installed & logged-in to teams via a client provided Microsoft account is strange as fuck.

    • fruitcantfly@programming.dev
      2·
      14 days ago

      Linux supports BitLocker encrypted partitions. You just have to specify the BitLocker recovery-key in your fstab file or on the command-line. I’ve been dual-booting with disk encryption enabled on both Linux and Windows for several years, using that functionality