"Linux would have prevented this!" literally true because my former colleague KP Singh wrote a kernel security module that lets EDR implementations load ebpf into the kernel to monitor and act on security hooks and Crowdstrike now uses that rather than requiring its own kernel module that would otherwise absolutely have allowed this to happen, so everyone please say thank you to him
@mjg59 not to mention that with LUKS, you don't lose access to the disk encryption key, because if you did, you wouldn't be able to use the computer anymore. You have to type it in every single time it boot.
IMO the real problem is that everyone has been giving up ownership of "their" computer, and are just now realizing that hmm, this might be a problem -- if its not yours, you won't have access to fix it in the event something does go wrong. And we all know Linux has its own fair share of ways to brick its boot process.
