I am LITERALLY in the process of migrating my servers to my new NixOS server after months of prep work. This couldn’t have been more timely lol Funniest part is, I just did my own TPM based encryption on my drives.
Windows 11 users reportedly losing data due to Microsoft's forcedWindows 11 users reportedly losing data due to Microsoft's forced BitLocker encryption
Submitted 1 day ago by moe90@feddit.nl to technology@lemmy.world
Comments
nek0d3r@lemmy.dbzer0.com 3 hours ago
zewm@lemmy.world 21 hours ago
I had a stroke reading the thread title.
user224@lemmy.sdf.org 20 hours ago
The lost data is appearing inThe lost data is appearing in this thread.
lka1988@lemmy.dbzer0.com 15 hours ago
@moe90@feddit.nl clearly doesn’t give a shit. They’re a serial poster.
PlantPowerPhysicist@discuss.tchncs.de 17 hours ago
new form of encryption just dropped
credo@lemmy.world 17 hours ago
It has too much data
ipkpjersi@lemmy.ml 4 hours ago
Windows is malware.
I remember when Linux users used to say that, but it turns out they were right.
I’m glad I leaved that cursed OS behind.
lka1988@lemmy.dbzer0.com 17 hours ago
DUDE
FIX YOUR FUCKING TITLE
GreenKnight23@lemmy.world 14 hours ago
don’t you mean, “FIX YOUR FUCKING TITLEFIX YOUR TITLE FUCKING lazy ass”
lka1988@lemmy.dbzer0.com 14 hours ago
😂😂
Iheartcheese@lemmy.world 4 hours ago
Dude has a stutter be cool
fluffykittycat@slrpnk.net 7 hours ago
What a stinker of an OS. Linux never looked so good
FooBarrington@lemmy.world 3 hours ago
A_Random_Idiot@lemmy.world 7 hours ago
Its why I switched to Linux.
fluffykittycat@slrpnk.net 5 hours ago
I’ve been a Linux user since 2010 and I’m glad I developed that skillset
r_deckard@lemmy.world 5 hours ago
That’s extraordinary, even for Microsoft.
If you’re on Win 11 Pro, up to 23H2, follow these steps to prevent 24H2:
win+R, type GPEDIT.MSC, press enter Locate “Computer Configuration\Administrative Templates\Windows Components\Windows Update\Manage updates offered from Windows Update\Select the target feature update version”
Now click the “Enabled” button, type “Windows 11” in the first prompt and “23H2” in the second prompt and click “Apply”
That will prevent 24H2 from being downloaded and installed. When they’ve fixed this and the “Recall” mess, you can go back and undo the setting.
You can still do the “bypassnro” thing, it’s just a script that’s been removed. All it did was write a registry entry and reboot. This is the registry key entry - you can still press shift-F10 at the same point and type this manually:
reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\OOBE /v BypassNRO /t REG_DWORD /d 1 /f shutdown /r /t 0
another method to try is this, instead of the registry entry:
start ms-cxh:localonlybut I haven’t tried that one yet.
Bitflip@lemmy.ml 13 hours ago
The bot that posted this is not programmed to edit typos.
douglasg14b@lemmy.world 8 hours ago
Really wish we didn’t have bots posting at all
ArkyonVeil@lemmy.dbzer0.com 10 hours ago
I’m of the opinion that encryption based security should be compartmentalized. IE, an encrypted folder, or “safe” app. Safes in housing are already a concept that is already commonly known so it would be natural to extend a safe into the digital realm. This would also help in the idea that safes are locked with a key, so if the user loses their keys, whatever is inside the safe, might as well be lost.
Now if EVERYTHING is a safe, (always on encryption). People will never known the difference. Its a dangerous type of security that is likely to be more a loss than a benefit.
michaelmrose@lemmy.world 1 hour ago
For most folks they could just write down their encryption passphrase in a secure location with the rest of their papers since 99.9% of the risk is thieves stealing their laptops. For most folks the biggest secure item they have is the one they use constantly their browser and all the passwords it stores to all their services. You know the thing they use constantly.
A compartmentalized approach makes sense when the laptop contains really vulnerable data like laptops which have been stolen with bunches of client data on it or a journalists communication with confidential sources etc etc. In that case you STILL want to encrypt the whole thing but you want to separately encrypt the really important stuff with a different key so that every time you open your laptop to watch cat videos on youtube you aren’t also unlocking all the data you will have to tell your companies users you lost.
ouch@lemmy.world 4 hours ago
You are arguing for selective encryption, but I can’t really find any technical argument in your comment.
Whether we are speaking of encryption at transit or rest, there’s a general consensus that encrypting everything is best in every way except possibly performance for select cases.
For example, it allows hiding (meta)data about the really important bits, and with computers it’s really difficult to tell which bits of (meta)data could be combined to abuse. Tampering is a consideration as well.
reseller_pledge609@lemmy.dbzer0.com 23 hours ago
Surprise, surprise.
Forcing security measures onto someone who doesn’t understand them or know how to recover their data if something goes wrong is a bad idea.
Landless2029@lemmy.world 21 hours ago
Fix that title gore please
Windows 11 users reportedly losing data due to Microsoft’s forcedWindows 11 users reportedly losing data due to Microsoft’s forced BitLocker encryptionipkpjersi@lemmy.ml 4 hours ago
I mean, it’s kind of not incorrect:
Windows 11 users reportedly losing data due to Microsoft’s forced Windows 11
lka1988@lemmy.dbzer0.com 15 hours ago
Tagging OP @moe90@feddit.nl until they quit being a lazy bitch and actually fix their title.
yesman@lemmy.world 14 hours ago
nodiratime@lemmy.world 9 hours ago
You can merge the choices and resolve the conflict: Microsoft users are dumb.
IMALlama@lemmy.world 7 hours ago
Clearly you’ve never used a Mac. It wasn’t until 2024 that you could snap windows, they have a built in dark mode but the word processor that ships with their computer requires you to use a dark page template if you want black background/white text, and lord forgive you if you want to take a screenshot.
douglasg14b@lemmy.world 8 hours ago
Found the Linux user.
Not Arc though, they would have said so
ThePantser@sh.itjust.works 22 hours ago
Windows is ransomware now
ogeist@lemmy.world 17 hours ago
Nailed it, that is how ransomware works.
in Italian gangster voice “Hey Buddy, give me your information, fair price for security, eh?, What? Do you not trust me? Buddy, you may lose your information, we wouldn’t want that, right?, just make an account I’ll handle the rest”
ober9000@lemmy.world 17 hours ago
It tech here. Yup sure does. For enterprise customers it gets saved in active directory anyway. But for home users, no way. For new devices I always create a local account and turn off bitlocker if it happens to be enabled. Most people don’t remember their email password, some don’t even remember their email address. So many times I’ve had to remove the drive of a dead PC or laptop and copy all their files off of it, because people just don’t make backups. But already happenend a few times now that a private customer got suckered into making a Microsoft account by one of those full screen pop ups. Probably set it up with an E-Mail some relative of theirs created just so they can download stuff of their Phones App store. And all their stuff just gets automatically encrypted. Bye Bye all the photos you had taken for the last 10 years. Thanks Microsoft.
GoodLuckToFriends@lemmy.today 7 hours ago
I just got bit in the ass by bitlocker when my laptop motherboard died. I had to do the unsafe bootloader hack to get back into the drive.
shalafi@lemmy.world 10 hours ago
Why isn’t this a thing for me? Because I skipped MS account creation? So many Win11 issues I read about on here and I get almost none with my vanilla ISO install.
ober9000@lemmy.world 1 hour ago
Maybe it’s a home vs. pro thing? On the pro version you don’t even to do any trickery in the command prompt or the registry. You just choose “join a domain”, create a local account. You don’t actually have to join a domain.
Rooki@lemmy.world 23 hours ago
Yeah it can happen, when you force people without their consent encrypting their data.
Melonpoly@lemmy.world 22 hours ago
Isn’t that what Iphone and Android already do?
Object@sh.itjust.works 20 hours ago
One major difference is that it is so much easier to lock yourself out of the desktop TPM chip compared to mobile device security chips because they’re not tightly coupled.
surewhynotlem@lemmy.world 21 hours ago
Huh … I never noticed. Probably because my phone OS never failed to boot, requiring me to pull data off the HDD directly.
Rooki@lemmy.world 13 hours ago
The only phone manufacture that does that is Google with pixel. Any other phone is for my knowledge either “weakly” encrypted or not at all.
Still your Mobile OS isnt just upgrading and encrypting your SD card and main drive. Thats the point.
OfficerBribe@lemm.ee 18 hours ago
Android I think just uses same credentials you use to unlock account, at least I am not aware of any recovery key. And you are prompted for credentials from time to time so it is harder to forget. I use fingerprint as main unlock + pattern and I have to enter pattern roughly once a week I think.
On Windows if you set up Windows Hello (fingerprint or PIN usually), you are not reminded to enter password afterwards so eventually you can forget it.
MonkderVierte@lemmy.ml 17 hours ago
Different threat model and usage scenario.
Lembot_0002@lemm.ee 22 hours ago
Most people don’t have anything of importance on their phones. And the tuning options are almost absent on phones, so it is less problematic bug-wise.
polle@feddit.org 13 hours ago
I read the article but am not smarter than before. I heard some time ago that windows does encrypt the drive but you need an active online account and the key will be saved online. So do people forget their online passwords and methods to recover that said account? I dont like m$ and am using linux, but people loosing their passwords, being uninformed about their systems and dont so backups is not the direct fault of the operating system.
michaelmrose@lemmy.world 1 hour ago
Setting up encryption has previously been an affirmative step wherein the user opted into being unable to access their data if they lose their password. Because of this users have the opportunity to back up their recovery key you know after they even learn what one is.
Having it happen on upgrade to an existing machine is inherently confusing and its easy to see how it could lead to data loss.
InnerScientist@lemmy.world 2 hours ago
Lose access to your MS account = lose your data forever. No warnings, no second chances. Many people learn about BitLocker the first time it locks them out.
It seems like they just got locked out of their Microsoft account (which stores the bitlocker key). Idk why they can’t just reset their password or if this article talks about the times where people couldn’t do that due to missing email access or maybe resetting the password deletes the bitlocker keys?
Either way though, the problem is that Microsoft is forcing encryption on everyone and not properly educating them on the consequences like “Backup your decryption key if you care about the data” in a way a normal user actually listens to.
pressanykeynow@lemmy.world 6 hours ago
you need an active online account and the key will be saved online
Is there a legit reason for this? Why can’t they just encrypt the data with the password used to access the online account?
calcopiritus@lemmy.world 1 hour ago
Because then you can’t change your password. Since you would have to decrypt all the hard drives that use windows with that account, and then encrypt them again with the new one.
This also means that if you forget your password you are fucked.
LoveSausage@discuss.tchncs.de 5 hours ago
Just did a fresh win 11 install . In order to update bios before installing Linux. Refused to let me install without wifi but a quick googling and a command prompt later it was possible to work around easily
habitualcynic@lemmy.world 9 hours ago
I helped my sister deal with this. Bitlocker activated itself, the keys were in her account which she had access to. She had done everything properly but nothing worked to resolve it.
There’s countless forum posts on it since about 2021 if you go looking for it. None of the recovery processes worked so I reformatted and enabled bitlocker at the start. Next time I visit, she’s getting Linux Mint.
Fuck Microsoft. End users shouldn’t be expected to troubleshoot like that.
Killer@lemmy.world 10 hours ago
Bitlocker can be turned on without having an account on device iirc.
StuffYouFear@lemmy.world 9 hours ago
Correct, can be turned on and it will provide you the key to be saved as a file if I recall
ArchmageAzor@lemmy.world 17 hours ago
I’ve decided to switch to Linux come october. I have some reasons I wanna wait as long as I can, but until then I’m leaving Windows behind.
lka1988@lemmy.dbzer0.com 15 hours ago
I’ve decided to switch my gaming PC to Linux…a few weeks ago.
No ragrets. My games run faster, I no longer need extra shit to make Windows work the way I want it to work, and I can remote into it however I want without running into artificial roadblocks.
muusemuuse@lemm.ee 16 hours ago
Get started early so you have time to acclimate and address issues. You are going to hate it if you urgently need your computer for something and something unexpected happens.
captain_aggravated@sh.itjust.works 14 hours ago
If you’re new to Linux, I suggest at the very least starting to learn now. If you have a spare device you can install it on, an old laptop or something, dual boot on your existing machine or use Virtualbox…Start learning now, while you still consider Windows an option.
My own journey to the Linux platform included several instances of the following scenario:
I need to get something done. It’s simple, in Windows 7 I know how to do it in seconds. It’s so simple that I don’t know the words for it, just the thing to click to do it. But it doesn’t work that way in Linux, even the vocabulary is different, and you need this done right now because you’re working on something and you don’t have time to stop and learn this right now.
Boot into Windows, get your job done and turned in. Then look up how to do it in Linux later. Eventually you stop hitting that wall.
You’ve decided you have seven months. I’d get to it.
reddig33@lemmy.world 15 hours ago
When are stockholders going to realize that the current Microsoft CEO is ruining Windows?
pressanykeynow@lemmy.world 6 hours ago
They know, read their yearly financial reports. They said for a decade that Windows is not only not profitable, there’s no future for it. Microsoft for several years now is a company that sells cloud and opensource services(Linux, Github, etc).
freely1333@reddthat.com 14 hours ago
Kinda joking because in many ways windows is better than ever… but also making windows have non starter features enhances Linux adoption soooo
spicehoarder@lemm.ee 13 hours ago
Better than ever? What? Bloated than ever maybe.
OmgItBurns@discuss.online 9 hours ago
I’m getting daily or near daily BSODs since switch back from Debian. I was okay with Vista and 8, and maybe I’m just getting crankier as I get older, but I definitely am not a fan of the current direction Windows is taking.
toastmeister@lemmy.ca 9 hours ago
It seems like a buggy mess to me.
MonkderVierte@lemmy.ml 17 hours ago
Something broke.
partial_accumen@lemmy.world 16 hours ago
I blame bitlocker.
Imgonnatrythis@sh.itjust.works 19 hours ago
I’m in favor of a heavy handed push towards encryption, I think most people don’t realize how important this is (now more than ever), but windows should be guiding and educating on this not requiring, and it should have absolutely nothing to do with an email address or online account.
Korhaka@sopuli.xyz 16 hours ago
On a home PC, what for? The only data that really matters to be encrypted is my keepass database file.
Imgonnatrythis@sh.itjust.works 3 hours ago
That’s what I said.
Im unfortunate to live in a country where the police can now quite easily enter a residents home and take their computer and use any data on it against them. Encryption can at least slow their nefarious efforts. I think most people should utilize encryption.
SplashJackson@lemmy.ca 20 hours ago
ShitLocker
RedditIsDeddit@lemmy.world 21 hours ago
I saw this problem coming a mile away
FreedomAdvocate@lemmy.net.au 23 hours ago
How are these people losing access to their MS accounts on their computers?
iAmTheTot@sh.itjust.works 18 hours ago
All of the data I actually care about is stored on a NAS and backed up in triplicate. The only data actually on my PC are program files.
Matriks404@lemmy.world 17 hours ago
I didn’t expect Windows to become THAT shit. Well it’s good for Linux I guess.
pewgar_seemsimandroid@lemmy.blahaj.zone 13 hours ago
hearing about this was my final straw, thank god
Treczoks@lemmy.world 39 minutes ago
If they are still using windows, their privacy and data safety was never of importance to them, anyway.
Or just get the data back from the backups they made.