More likely this was a corporate owned device and either stolen and resold on eBay illegally or when it was decommissioned, they didn't remove it from their management systems. Surfaces and MacBooks can phone home to check if their serial numbers are registered to a corporate account and then pull policies from that corporate account without your say so since as far as the device is concerned, it still belongs to the business. The root cause here is that Mastercard never released this surface from their management systems. Microsoft is not at fault here. The business was just using the provided features to secure their assets. The failure by the business to release it is the problem. I say this as an IT admin that implements these functions in Windows and Apple laptops I issue to employees.
yeah video is clickbait at best. This is also people need to be careful when buying refurbished Thinkpad or other business laptop especially if it was previously owned by Fortune 500 or other fancy companies
I didn't see anything in the video where the man implied it was a Microsoft problem specifically, but rather a "firmware" problem that cannot be undone - which happens to be in a Microsoft device. I've been in IT for a long time. Plenty of cases where we did new rollouts, and the company was very "here you go... a bonus" with all the old hardware. Problem was, more than one person was fired for not doing the very basic "duh-level" requirements of wiping data, BIOS passwords, security lockouts, and remote WoL credentials. Most of what I worked with was all still built-in configuration stuffs excep for a huge rollout of the Dell Optiplex mini pcs for us inside kiosks. Custom firmware out the wazoo. Once we had to uninstall all of those for a new rollout, it was a whole new ballgame to wipe them for "repurposing".
i doubt it was stolen, he said the one he bought was being sold along with hundreds of others. who's getting away with illegally selling hundreds of company computers?
@@mapl3mage I don't think it was stolen. If Mastercard owned it and did nothing for years, then it is a huge negligence from different layers. Also, how will Mastercard claim the insurance? and how will Mastercard discard it from the inventory?
Also, this hardware has been written off as it had depreciated years ago. Not to mention Surface warranties are notoriously short. Major companies replace hardware once the extended warranties expire. This was more than likely sold by a recycler. If it was stolen the failsafe would have been activated immediately, especially since it belonged to a credit card company.
@@MyLibertyTV but we can agree here that removing a proprietary crap like windows from the tablet and installing a (mostly) free Linux OS which re-enabled its functionality at *NO COST* was a killer move.As far as we know the lock was implemented via windows.
@@RealJonDoeDon't work with older PC. Even with newer update of Linux can make incompatible. Some Linux can ignore requests. Depends how Linux developer's desire to build Linux with their own preference.
I'm so glad I learned Linux as a teenager. I'm 32 now. It's still serving me well to this day. Never let your hardware die before it's ready to go. Awesome work.
@@98f5your poor children, lol. I've tried Linux so many times and it ends up pissing me off. I do have a server running Xigmanas on free BSD, and that's okay because it's simple. The ZFS file system is really cool. I also keep a VM of Ubuntu just in case I need to recover my data from hard drives formatted with Ext4. But for general computing I'm squarely in the Windows garden because I can work much faster with Microsoft products than in any open source solution.
You may already know this but Computrace is not exclusive to the Surface. It can be in any computer - but especially one geared for "enterprise" markets. It had it in my old Lenovo ThinkPad T450 but fortunately I was able to "permanently" disable it via the UEFI config shortly after unboxing.
@@ArmChairPlum Just an FYI. Dell will add this to your software list if you have a Dell Enterprise purchase contract ... so it can come from the manufacture with Computrace on it.
@@DucNguyen-bd5ir I've seen a lot of bioses with Computrace on them in the shop I work but haven't run into one yet where it's in use....Thank God. It's a good idea in some cases but pity the guy who buys used equipment and it's been activated. I'm sure there must be a way around it but who's going to bother themselves for a 200 or 300 dollar used device?
@@funguseaterAI Theoretically, if you are taking a machine out of the box from the factory, it shouldn't have been enabled in the first place. But that was why I used quotes around "permanently", because fundamentally it isn't technically feasible for a home user to test that it has actually been disabled or not.
This was previously owned by MasterCard, and was not properly reset before MasterCard got rid of it. They probably just got around to cleaning up the mess from their previous admin.
Yep, they won't have removed them from intune properly and it'll be shown as a corporate device. It's also possible that they have the policy set to require enrollment on boot. That setting persists in uefi. Unless you clear all secure keys from it. Have had this issue with govt issued devices during covid. They require internet during windows install and also rename themselves to their naming scheme.
You guys missed the most probable situation, an employee for Mastercard likely sold the device instead of sending it back to IT. The device likely is still owned by Mastercard and was illegally sold.
@@leefhead1 this is really not a likely scenario. If the device was not returned, they would have reclaimed it. Since it was returned it was probably just put in a pile and forgotten about.
Better to learn linux now rather than later, if you don't want to be forced to buy new hardware. Microsoft is blocking PCs with older CPUS and TPM chips from receiving windows 11 upgrades.
@@Igorath there are places that linux hasn't covered well yet. My linux laptop still derps on dual graphics and debian forums are like "hurr durr dual graphics are hard". Thankfully I don't need it so screw tinkering until I have nothing better to do.
You don't need to be a nerd for Linux. It's not about the OS its about your mindset. Works different? Thankfully yes. U have to get used to it? For sure. Worth it? Fcuk yeah.
It's not hard to just get things working. A total noob can figure out how to install Arch without much problem. Whether they'll get everything to work or work correctly is what separates the nerds from the noobs.
@@joemann7971 there isn't much to get everything working correctly in Ubuntu, it works great out of the box, unless you have some custom software needs, that require a bit more knowledge how to set it up. You don't sound like someone involved much into Linux? A noob may have hard time installing Arch, but on the other hand - it doesn't take a nerd to have an up and running Arch, everything working fine. (unless you do something especially special, I don't know).
@@moetocafe no. The issue is PC manufacturers sometimes add proprietary crap into the machine that only work properly with Windows. I had an MSI GS65 laptop that would always go into an apparent hardware locked airplane mode with no way to get it out of airplane mode without a reboot. I eventually found a workaround that would allow linux to be able to take it out of airplane mode but it wouldn't work reliably. I eventually just gave up and just disabled sleep. Since it had a fairly fast NVME drive, I just enabled hibernate as a sort of permanent workaround.
@@joemann7971 couldn't that airplane mode be disabled in bios or hidden/service bios (if any) ? I had sleeping issues with my PC as well (I run on Debian), but managed to fix it.
When I was working at a local computer repair store, they ended up buying an HP laptop that also had CompuTrace activated. We also ended up putting Linux Mint on it and used it for in store use only. This was back in about 2011.
My guess is that Ubuntu has support for some of the features offered on the surface pro. The program used to make the ISO bootable on a thumb drive shouldnt have any bearing on the OS functionality. Ubuntu is one of the most stable, well-documented, and well-supported Linux distros around.This is likely why it worked so well. Linux for the win. Always good to keep a bootable drive around with a popular distro.
@@SigmaMan1448 + for Ventoy, I have had certain computers not boot some distros. It's not really the distro itself thats the problem, it's the way the computer is booting it. You can have some issues with EFI stuff.
"The program used to make the ISO bootable on a thumb drive shouldnt have any bearing on the OS functionality." It shouldn't, but sometimes it does. And Ventoy is absolutely great and I have a 32GB thumb full of ISOs, but sometimes it doesn't work and I have to make a bootable drive in the old fashioned way. But it's still better than Windows.
@@JeanPierreWhiteif the previous company has locked down the bios then perhaps no. You may not be able to import the certificate into the secure boot store.
although you can't remove or prevent the Absolute software from installing on windows. You can stop it from running and connecting to the remote servers. Install windows and do not connect to the internet, remove the service from the registry and create a new registry folder with the same name, change the permissions so only your user has permission to modify it. The permissions are very important otherwise it will just remove and add it's registry stuff back. restart and the Absolute services/processes will no longer be run. I can't remember the exact names of the services and such but that's the method I used.
When I was younger and e-bay first launched, my friend bought a car from there, transferred the title, had it registered and more than a year later, some kind of federal agents showed up at her house and took her car back. It's not uncommon for people to sell stolen goods on e-bay.
@@eng3dbruh in this case they probably locked all their old surfaces because they upgraded to new ones.. just that.. this particular one must've been sold by an employee who left.
"Transferred the title" Sorry but if there's a title of ownership, the feds couldn't take the car back as stolen, because that's not how things work with property management. Something that might surprise you: someone can literally forge your house's deed with their name on it, and you'd be incapable of getting the police to evict them and arrest them for fraud. You'd be required to take the criminals to civil court to fight over ownership. That or pay them to go away. Big problem with this kind of fraud happening right now. The only reason the law enforcement would have leave to take the vehicle if a title of ownership was presentable, would be if the car was used in the committing of a crime, or if there are liens out on the owners name due to non-payment of debts. If the feds are taking it, it's likely because the IRS told them to take the car, and your friend was less than fully forthcoming about her financial situation and her willingness to pay her taxes.
I should imagine that it was bought and then not used by the company, with the product then being sold on without any thought of what was on the computer hidden deep in the systems. Some inventory has been done and then just an automatic shut off as they probably thought that after 5 years the Microsoft programming would have died anyway! Or even that is what they programme into their own stuff so no one can continue to use their old work stuff. Most companies I know replace all their computers after five years.
In this case, I would say it was an ex corporate device from a leasing company. They (Mastercard) will have not properly released the device from management. So he owns the device but would need to get Mastercard to both lift and remove it properly. The device could have windows installed back on it. Just need to clear the uefi secure boot tpm keys. Create a local account on boot and don't connect it to the internet (at least for the first boot)
The good thing about Linux is that you own your OS and you own your hardware. Microsoft and Apple can at any moment remote kill your device if they wish to.
I never thoght about it but *remote kill* - is it mean that my data on a device won't be available? Or it would but throughout different OS? I mean, if they do, they'll brick my OS or they'll brick all of my SSD/HDDs with all the data I "own" on it?
So companies can lock down devices that are stolen (by either Employees, or otherwise) and that annoys you? Also, this video wasn't even locked using Intune. Dude probably couldve just reinstalled Windows and been fine.
@hunterzone4846 Bitlocker is a joke. We routinely decommission laptops and workstation PC's for our company. I've removed the bitlocker on all the computers I decided to take home with me.
Linux can't stop Apple from remote killing a Mac. If a MacBook was reported stolen, you won't be able to install Linux in it at all since you have to activate it online using your apple ID before it let's you install it at all
It looks like Mastercard didn't remove the UUID of the hardware from their Azure tenant which probably managed their endpoints. I had a similar problem with my old surface 3 ironically with a company I used to run. I closed the company and the associated tenant forgetting to remove the devices from endpoint management. A year later the surface got locked. This was also used to encrypt the drive, DOH. Luckily, I could still log into the old Azure tenant and remove and reset the device and bingo it worked
Good that there is a software to detect which device was stolen, but not after 5 years when all the devices were sold to legitimate people that paid for them
Long time linux user here, great job figuring out what to do on your own! I’ve been through the same trial and error process figuring out what worked on my hardware and testing out different distros and truly the learning never stops. You should be proud of yourself for getting as far as you did!
3:45 The CSR implied that it was probably a mistake and now tons of tablets, etc are frozen? This sounds like the beginning of a class action lawsuit to me.
More than likely these devices were meant to be destroyed because of the sensitive information that would be on them but someone decided to resell them on. It's shitty but Mastercard has every right to prevent these devices from being used. It sucks but it's the seller that's at fault here.
@@TonySquared09 Why not just destroy and replace the storage/SSD? Makes sense to do that instead of destroy the entire device. (unless M$ is being crappy and soldering the storage to the motherboard in which that would sorta make sense)
@@shane_gentle it's not about "M$" soldering shit to the motherboard, it's about data compliance. Depending on the country or sensitivity of the data, data compliance generally means the destruction of the entire device and with this being an ex-MasterCard based device, it would most definitely be up there with things that need destroying.
At the Office where I worked, I gave life back to an old and sluggish 2013 iMac running OS Sierra. No way to update, Apple had already scrubbed down their servers and nothing to do with it, it was really, really slow and sluggish with tons of pop ups and old company credentials to validate. I installed Fedora 40 using an old Fedora Burner (pre-installer) for the USB device. When initializing inside the MAC -prior to using the fedora software, initialize as follows: MS-DOS (FAT) and the scheme to GUID Partition Map. When booting, press the mac sign and boot from the device to run, install, and when formatting claim all the used / unused space for the new OS. Long story short, running better than when it was new, new face, high security and for a new purpose.
Nothing comes from the factory with Absolute Software installed. It is a product used by companies to keep track their computers and to remotely lock and wipe them. I worked at a company that used it.
@@ANGELROB_YT If they were really stolen back in 2019, MC would have bricked them a long time ago. They probably just forgot that they sold a batch of them after they were replaced back then and they forgot to remove them from asset inventory. It is very frequent to see ebay seller puchasing lease end tech in big lots and sell them on ebay. Stolen good seller tend to be less visible especialy for large batches. But in fact we currently don't know for sure.
cool video! nice to see more linux use. though to play devils advocate, what are odds this was actually a mastercard office device or given to employees as part of their perks and they just got rid of it on ebay xD
Somebody sold that tablet illegally on ebay - there needed to be enrollment done of that device that linked it to device management under Windows - it cannot do it on it's own - you need IT support to supply passwords to begin this process. If it has been booted up and connects to the device management system it will be locked out if it has been tagged as stolen or missing.
@@gattmolson people leave, devices get lost in a shuffle.. IT crowd decided to do a full audit of systems and "locked" each they couldn't find. Standard practice. So if you could get hold of someone, then you could probably get it removed. Try emailing support, or any mastercard emails.
@@gattmolson They only care about the data on the device - a lost laptop is the least of their worries. It is called Microsoft Intune and only when you try to logon into the corp domain account it then phones home and checks if the device has been tagged as lost and then it will brick Windows. The firmware does not do that hence why he could install Ubuntu and I suspect he never re-installed Windows since he got from ebay and simply renamed the user account credentials to his own. Always re-install Windows when buying used.
@@leonidas14775 A lot was sent to a recycler and instead of being turned into e-waste they resold it to the supplier on ebay. Corp would have marked them as gone from their asset register as common practice - the ebay seller should have reimaged them with fresh Windows.
You might say there isnt much info for av video like this but its always facinating to hear people who arent very technology knowledged try something like this, it makes me smile that people are learning tech, even if it a slow process
most likely lease returns (with that quantity available) or part of a package that they had for customers to replace older card processing hardware that someone forgot to take out of their system when retired and they finally ran an inventory.
@@gattmolson Spare machines are great for trying out some different versions. It's fun to explore the different tools and setups that each version has to offer. I personally have settled on MX Linux KDE for my daily driver. Worst case, even if you don't like them, you at least have some content. MAME and RetroArch both will run on Linux, too. In fact, Retroarch even has a few distros dedicated for RetroArch, like Lakka.
Terrible that this happened. Unfortunate you could not enjoy your choice of tools on your equipment. Glad you found linux to be an acceptable work around. Could be a great learning experience.
The serial number is pushed into NVRAM by the bootloader and Windows then reads it from there. It's actually pretty trivial to patch the EFI bootloader to prevent this, it's actually how you pirate Windows nowadays by tricking it into thinking it's an OEM device with a valid serial number.
in devices that support it, computrace is an option you can turn on but warns you it can never be turned off. when enabled the computrace option disappears usually.
Someone didn't use Google, or Bing ... lol. To turn off Absolute Software on a Microsoft Surface, follow these steps: Shut down your Surface and wait about 10 seconds to ensure it's off. Press and hold the Volume-up button and - at the same time - press and release the Power button. As the Microsoft or Surface logo appears on your screen, continue to hold the Volume-up button until the UEFI screen appears. Run the following commands in the PowerShell to disable Absolute Software's Lojack: Get-HPBIOSSetting -Name "Absolute Persistence Module Current State" Set-HPBIOSSettingValue -Name "Permanent Disable Absolute Persistence Module Set Once" -Value "Yes"
What happened was that it was a device given by Mastercard to an employee and that employee probably sold it without permission and since it wasnt decommisioned properly, they locked the device. So either you bought a stolen device or a improperly decomissioned one
5:05 i believe not every microsoft surface is like that, like one your viewers commented, its most likely a corporate device that they forgot to remove in their systems👍
Old thinkpads have this too, however there you have the option of flashing a custom bios such as Coreboot which completely removes any and all traces of it. its also possible to short out a chip to reset it however this is quite risky
Everyone should stay as farther away from Microsoft as possible. And don't say "I'm happy to be MS slave" - this is exactly what gives them the power to abuse you like that.
@@cinderwolf32 you don't have to. You can continue to be their loyal customer and see how that benefits you :) I was just sharing my opinion - you may or may not like it and that's fine.
Sharing information is good. Just keep in mind that telling other people what they *should* do or *should* think will likely never get people who already hold a different opinion to consider your arguments.
One of two possibilities here. First, this was a Mastercard leased/owned device and when they were done using it they disposed of it and whoever ended up with the device resold it without making sure that Mastercard had first removed it from their Mobile Device Management System. The admins in charge of the asset management are just lax in their work and now you have a Surface that will never activate MS until Mastercard does a major inventory. Second (and very likely) is that it was stolen from Mastercard and then resold on eBay (I know right? Like who would ever do that?) and that is why it is locked out from Windows activation. Having dealt with payment card companies like Mastercard, Visa, American Express, I would suspect that this is stolen as they keep a pretty tight control on their devices for security reasons.
I had a Surface Laptop 5 and it was a pain in the ass to get Linux to work. Only the distro Nobara booted. Everything worked great except it doesn’t go to sleep when I close the lid.
I've heard that it's stored on a separate EEPROM/SPI flash to survive a UEFI reflash so it might be possible to desolder that, flash the UEFI (CH341), format the drive (including the HPA, Computrace likes to hide there) and have a functioning system. Or just keep using Linux, that's probably the better option.
Wow, I'm surprise they didn't lock it at the bootstrap loader stage, Luckily they didn't. But Just in case I never going to buy a used Microsoft surface now, that's for sure.
Not all Surfaces have something like this installed, it's just that this device was likely stolen by a MasterCard employee and sold online. Instead you should be careful to only buy used electronics from trusted sellers.
@@angryox3102 can confirm. Apple Uses MDM and I seen that in action too. Can't restore it, can't boot from anything except the OS that's on it or recovery. If you try a USB it skips it.
@@mjdxp5688 Happens even with trusted sellers with hundreds of thousands of sales over many years. The large ones don't buy from individuals who might be selling a stolen device but rather in bulk from corporate auctions, devices that were leased for a few years and then returned and now have no re-lease value since they're outdated. Although they'll usually have been wiped or had the storage removed prior to return, sometimes the lessee will neglect to release some of the devices from remote management before they return them. Then the reseller buys a big pallet full of them, puts a fresh install of Windows on, and sells them to customers on eBay. The reseller will have been assured as part of their purchase that all devices have been removed from remote management, and even if they checked BIOS and saw Computrace present that would not be unusual and there wouldn't be any reason to believe it would later be used to lock an end user's computer. It's unfortunate these screwups happen, but the reseller could probably get the lock released for Matt. Or if they couldn't, then considering the circumstances they might be willing to provide him an exchange for a device of comparable value even years after his original purchase.
I am guessing it may have been a "Joined" device which means it was a device which was joined to MasterCard's corporate network domain, basically a network workstation with a certificate on it to authenticate to MasterCard and they would have had full control over it until you completely delete everything bringing it back to factory settings or installing a new OS.
so its possible a stolen device sold on ebay? or the seller or Mastercard IT didn't follow the process to de-commission the device. usuall when I try to buy a used laptop, the 1st thing is to check if the device have bios locked or not.
Tux is happy to welcome to the GNU Club Penguin. Enjoy the party. Joke aside, if you want a suggestion for a distro for home desktop and laptop usage, I'd suggest going with Linux Mint with Cinnamon or looking into distros that use KDE Plasma Desktop environment. You could also look around the start menu to see if you can find the distro's app store/package manager, then research what packages you need for Cinnamon or KDE Plasma and then look into how to change the Desktop environment from the login screen once you're installed one of those. The reason I suggest these two is because they're going to look familiar to you since you're leaving Microsoft. Gnome might be better if you prefer a touch screen, though. Anyway, enjoy the OS and your tablet.
You had a good 5 year run with the tablet. Please hold no ill will towards MasterCard. Do not install Quibble and load a version of Windows on a non-NTFS partition, bypassing Computrace locking mechanism
You can't install windows on a non- NTFS partition. You haven't been able to do that since Windows Vista came out. Maybe you are thinking of installing windows on an MBR partition disk layout instead of the GPT partition layout now in common use? Unfortunately Surface Pro firmware requires a GPT layout to boot, and there is no support for MBR legacy booting at all.
After that initial wipe you should actually be fine to go back to windows. However, enjoy linux and i hope they have good ink drivers to support your work!
I wish it was that easy, but after deleting all partitions, making new ones formating and reinstalling windows BOOM! It comes right back. Computrace lives in the UFEI and comes right back.
Computrace will re-write its files from the UEFI chip to the windows partition. It might be possible to dump the firmware, reverse engineer the uefi, and reflash the chip, but that's not quick nor easy.
@@classicrockonly Yeah, that computer is bugged sadly. You would have to reflash its firmware* and other onboard memory to stock (and hope nothing in it relies on any one-time-programmable CPU fuses that the computrace thing has burned) * and that's assuming there is a non-backdoored firmware out there and that the CPU won't refuse to boot it due ot key mismatch
Similar to you, I bought a used SurfacePro 4 from eBay from a reputable seller. The booting up "Surface" display repeats a couple of times. It used purely to view to view movies and TV show episodes I copied from their original media; and music I copied from my CDs and vinyl discs. Surface is hardly what I would consider a "serious" laptop type PC.
Mastercard didn't do anything. Their IT department decommissioned a bunch of road computers and someone "recycled them" on ebay. They were fine and then one day the mdm team probably locked a ton of old devices. What you do is actually install windows fresh and then pick the I don't have internet until you get to the desktop and then DO NOT connect a windows account. What they need to do is remove this from their device management. You may not be able to email them because it's a portal and unfortunately the seller is in the wrong, not mastercard. Once you're in windows you can block the mdm with a powershell script. You can also install windows Ameliorated edition.
The surface requires a UEFI boot manager to load any OS. The other Linux distros would load from a Rufus USB stick. Try Ventoy for iso's, I have a ventoy and have ten different Linux, Win XP , Win 7, 8 ,10 & 11. I use it to boot to a live trial of a distro or to make a Virtual Machine. At 75, I still like to tinker with PC's , I have had a PC since 1979.
This is an actual big issue with the 2nd hand market from these companies that sell their old stock. I've worked as a sysadmin for the better part of 13 years and this software is nice when something is stolen or misplaced as it enables you to remote wipe devices. HOWEVER The admin running the software needs to be aware of when the company mass sells things so that you dont mark a sold item as stolen which it looks to be in your case. If anything what I suspect is that the admin was rather lax on this software and the CFO or someone from finance wanted a list of devices that they actively maintain and keep. Rather than doing the min that youd expect they just line item said all of these devices that haven't been seen in x number of days we're calling them lost which is what that screen is. Keep in mind that nearly no hardware that you buy second hand is immune from this software as I've found blackberries and android phones with it installed and it's just as troublesome. Sorry my dude but hey if nothing else you've dipped your toes into linux land and i hope you enjoy your stay.
That's definitely a possibility, it's also likely the device was stolen. I've worked in a school environment and kids would steal Chromebooks and sell them online sometimes. We got calls from people saying the device was locked asking us to unlock them.
@@mjdxp5688one seller having hundreds of them though makes that less likely. I mean, I guess someone could have broken into MasterCard HQ and raided their IT office, but it seems much more likely that IT had done a bulk sale after they did a big device refresh. Would have been a different story if the seller was offloading them in 1s and 2s.
But, this guy buys a Surface in a way that he has every reason to believe is legitimate, and then some faceless megacorp deprives him of the use of his device, perhaps because of their own mistake, and won't respond to him. That actually looks a bit like theft to me, though not the sort all the commenters are talking about. Linux to the rescue (and Visa for a credit card).
The only thing I can think of is that Mastercard owned the laptop, and the seller got a hold of it. It's got nothing to do with Microsoft or Linux. Blame the seller for selling a company laptop.
I too was a victim of the hardware product bitlocker. I initially bought the laptop with Windows 10, and tried installing Linux Mint side by side on dual boot as I used to do before. Installation was successful, but upon reboot, Windows boot manager was asking me for the bitlocker key. Obviously, Microsoft has hostaged MY hardware to be able to run only Microsoft Windows and I cannot install any other OS into it. I had to reinstall later Windows 11 and told my supplier to skip applying encryption into hardware. This time, the dual boot installation of Linux MINT was successful and the dual boot grub appeared upon boot up. So happy to have reclaimed my own hardware.
It's running endpoint protection software. Most big companies and ALL publicly listed companies run something like that. So if any equipment is stolen, the thief can't steal data or use it to access the network. It can be remotely bricked. My company is starting to work with public companies and without exception they all require us to show we have a security policy around using endpoint protection for mobile devices.
This is not really Microsoft thing - it's companies that buy these devices and put their own "Security" features that block users from doing anything if device was lost or sold. Good luck trying to go around this shit on Macbook
I see a lot of reactions here, it must be a stolen one! Nothing could be further from the truth! An old friend buys a Lenovo laptop on my advice in the store, so not stolen. Until one day he could no longer access his laptop because bitlocker was activated by microsoft. They thought that he had made suspicious login attempts to encrypt his data. Since it is an older man who only uses his computer for digital banking and reading emails, this is a disgrace! Now Linux Mint and Libre Office are installed.
Bitlocker is activated by default. If you are comfortable having it turned off it's one of the first things you do when you get a new windows laptop. Turn off bitlocker. It will run slightly faster as well.
@@JeanPierreWhite I myself have turned off bitlocker on his new windows 11 laptop, but I don't trust Microsoft! I also still have windows 10 running for various applications, but the updates that I can't turn off are worrying me!
I'm guessing this is most likely a stolen device that had this flashed to it so it could be remotely bricked to discourage stealing. Make sure to vet computer resellers before doing business with them or else there's a chance they'll sell you stuff pike like this.
If the ebay seller had a bunch of them - they probably were leased to MasterCard, aged out and were taken off the lease. Then sold as scrap to recycler. Recycler then sold it to an ebay reseller….
@@dereketnyre7156 I'd say this too. A combo that would be the IT at Mastercard not removing them properly from management or ensuring they are wiped. (Nothing persistent in the UEFI) The leasing agency should also have made sure that the devices were fit to resell. ie that Mastercard has done their part. Otherwise charge them for bricked devices. For reference, I'm basing this on a scheme at schools in NZ and the leasing company wants us to ensure that devices are appropriately decommissioned. Otherwise they can't onsell after refurbing the units...
Hey, I work in IT for a Pharmaceutical company that does the same thing. Sounds like someone stole it from work, never returned it when they left/were fired, or it was stolen from someone who used to work at MasterCard (this happens a lot). Typically flashing the BIOS and reinstalling Windows should fix the issue.
@@shoham00 100 devices stolen in a year isn't crazy. My company has about 20 locations worldwide and at mine, we probably have 20-30 a year stolen. Thieves tend to target business people at the airport and break into their rental cars to steal their luggage a lot, especially overseas.
@@shoham00 It's not unlikely, I know my company switched to the Surface when it first came out for our salesforce since it was easy for them to use on a plane and in meetings with customers. When you have a company with thousands of employees worldwide having 100 or so devices lost or stolen in a year isn't crazy. Thieves like to target business people at the airport and frequently break into rental cars to steal luggage, especially overseas.
@@darius5066 What I meant was simply that a single seller having come by a batch of 100 or more of the same device sounds a lot more like recycling than theft. No doubt a company could lose 100+ devices annually - but for all of those stolen items - which were presumably stolen as singletons - to wind up in the hands of a single seller is unlikely, and for there to be a single theft of hundreds of items also seems somewhat unlikely.
Happy computing. If you just use it for surfing and email, it should work fine. I have used Ubuntu Linux since 2007. I quickly found that where Windows was becoming more and more difficult to perform daily tasks, Linux was getting easier to use. I built the machine I'm using right now in 2013 and it has run nearly 24/7 since then. ASUS Z87 board with a Gen 4 I7 4770K cpu 16 GB RAM and an EVGA Gforce 1080 Just upgraded the SSD to a 4TB this year
That was probably a company tablet, actually not microsofts fault this time around 😂. Anti theft features built into firmware makes a lot of sense. It just sucks for the second hand market if they get sold. If mastercard did allow these to be resold they should of disabled auth for it, instead if screwing over a bunch of people. That said, on any low power device, this tablet included, Linux is just better, its current, and usually a lot more performant. You dont really lose anything since this tablet probably isnt being used to play competetive online games. 😂 If I were to put it on a weird and unique device like a tablet I think ubuntu would be my first choice as well.
Yes indeed. Only problem with Linux is that there is some software that isn't on Linux, and the alternatives are maybe not so good, or are not as widely used. And then tend to be concentrated in the graphics/photography area.
Without knowing the serial, it’s hard to say for sure why it was frozen. Mastercard will freeze a device if it’s been marked as lost/stolen. Chances are, this was stolen and sold illegally, or it was in the Mastercard inventory and came up missing. Feel free to send the serial to the asset recovery team and they can look into this for you.
And if you’d like a quicker response, let me know an email I can reach you at and I’ll figure out why it was frozen. I work at MC and can get it unfrozen pretty quickly.
These were probably life cycled machines, and on their way to recycle. A lot of big corporations want these destroyed since the storage is not removable. They are still stuck in the platter hard drive thinking. Happy e-waste heaven. Since these machines could contain sensitive data, they wanted to keep it out of anyone's hands. 4 ideas that come to mind, is that it didn't properly make it through the companies disposal process. It did go through the process and there was a documentation error. Their disposal process includes destroying the machine. It wasn't supposed to leave the company (hot). Either way their data is mostly safe now. Common error, using the term "burn" while creating a bootable USB, even more so while using an iso.
Subscribed, thanks for the info And encouragement bro. I'm gunna try to do this on my pro 8. I assume you’re a high school teacher ? Seem like a cool guy to have as a teacher certainly i hope your students appreciate your laid back vibes
I do repairs on things like this for a living- Chances are pretty good that that unit was licensed to some corporate entity, & might have been stolen, either by the guy that sold it to you, or whoever supplied him. Regular M$ Surface units don't usually have those features even listed in their bios, so the avg consumer doesn't have access to them. I've dealt with McDonalds, Sonic, Samsung /doordash /grubhub type ones as well as POS & other systems nearly all of them can "phone-Home" if they are still listed in their systems. That might have been an actual MasterCard office unit- it's doubtful, but possible. In some cases it's removable or can be disabled but usually only through what is an admin password protected bios. And there are some cases that one a unit is registered with the security provider it will always red-flag the device, even it it was obtained legally. for not being a techie, god job finding something else that worked for you.
if its in Intune, the only way to get the MDM agent to stop phoning home and being registered to the previous owner is for said previous owner to do something on their end, and then you have the device initiate another call-home and it unlocks/removes itself. This all seems to be doable from within UEFI if there is a 'supported network adapter' connected. [source: bought a Microsoft Surfacebook from a pawn shop; still registered to some (former?) employee of American General Insurance. It had PDFs of her continuing education certifications and such on it, but not a whole lot else. Kubuntu'd the same day i bought it, ET NO PHONE HOME.]
btw linux alternatives for rufus are: balena etcher and raspberry pi imager. alternatively one can use the dd command. to which all these softwares are basically just a user frontend.
Guy doesn't question the seller of the unit. Just howls about "Microsoft bad x reason!" Seller of the tablet supposedly had hundreds of units on hand selling'em, guy didn't question how ONE PERSON. On EBAY. Had that many tablets to sell. Usually, THEFT IS INVOLVED WHEN THAT HAPPENS, either from a store, or from a company.
Or just decommissioning of old devices which weren’t properly unenrolled… I’ve gotten multiple computers for free because companies decommissioned them
@@sleepingcattv I've been a Configuration Manager for 25y now. This is not uncommon. I always verify my inventory - and when I was working for a municipal agency, I discovered that about 400 devices were unaccounted for. So the normal procedure is flagging them as "Missing". At first I wasn't allowed to because (hold on to your hats) it would be an indirect admission that we lost hundreds of devices and never took any action. But I did anyway (who cares what managers think) and in the months following they all popped up, bit by bit. The were in and on cupboards - some clients even had entire secret stores "in case something happened" - or even entire project crews were covertly equipped with the stuff. So, IT departments, write down your procedures, educate your employees - and most importantly, embed your administrative procedures within the working procedures. And verify often, define and report performance indicators, analyze any discrepancies and take away root causes.
There are entirely legitimate business that deal in equipment that has been disposed of by corporations and other big orgs. The fact that there were so many available makes it MORE likely that it was a legitimate business. But you hate this guy because he's a teacher, I guess.
Nothing to do with Microsoft, this is part of a Mobile device management class of software used to secure company assets like laptops that are issued to employees, because this is still company property they have every right to secure it, now tyhe issue that come up is when a device is no longer being actively used by the company and they sell i off or want it destroyed. the correct practise is to remove the device from the platform before selling or disposal. This wasn't done. But there is also the equally likely that an employee stole them and tried to resell on on ebay although having so many might mean its more likely old machines that weren't properly removed from their device management software.
Disable the Internal UEFI Shell Press F2 during startup to enter BIOS setup, then go to Advanced > Boot > Boot Configuration and disable Internal UEFI Shell in the Boot Devices pane. Disable UEFI Secure Boot Hold down Shift and click Restart, then click Troubleshoot > Advanced options > Start-up Settings > Restart. Next, tap F10 repeatedly to enter BIOS setup, go to Boot Manager, and disable Secure Boot.
It’s the secure boot that keeps a hidden backup on your hard disk, trying to boot and stop your new installation. This is good advice and what I did when I bought a new computer . I won’t have MSon any computer I own, because I don’t want to spend 15 minutes on admin every Fffin day. I also installed Linux Mint and it works fine. It’s not your tablet that’s the problem. The problem is the residual operating system.
Indeed. I love Linux and have been using it for decades but the premise of this video isn’t the great promotion of Linux that that the author thinks it is 😅
Then why didn't MasterCard respond to any of his emails looking for the seller's information? It is bad enough that they waited 4 years, but then when he reaches out in order to try to resolve it (which could include his returning the stolen device) they just totally ignore him.
Even if true, it sounds like the guy repeatedly tried to contact Mastercard and was rebuffed. And the tablet was so old that it most likely would have been scrapped by the corporation anyway. What this video is really saying is that you're taking a big chance buying used hardware off ebay. That could've just as easily been spyware or ransonware as security firmware.
Blame the victim, eh? It might have been stolen, or it might not, but he didn't know it was stolen. I don't know how US law goes on that, but Mastercard ought to be answering his emails.
That ending was hilarious. lol.. You should put MX Linux on it.. it's much more lighter weight and would probably run better on that thing. (actually I would research and make sure it has touch support first). Otherwise, it would make it run faster
Good video. I recommend the RUclips channel SomeOrdinaryGamers and use the channel search feature to look for Linux content (though, I believe he would probably point you to one of the dedicated specialist channels as he creates a variety of content). Notably though, you could try to contact him or comment on his videos, and he might make a video to spread awareness about this Absolute Software (and maybe your channel as a bonus). I already commented about this video on his most recent one, myself, but more voices are better.
@@cinderwolf32no kidding, know of a schools IT department where the jerk in charge doesn’t bother to wipe anything from the drives, allows it to out the door to auction. Now the school system is being sued for false claims that the computer was totally sanitized and unlocked. Sounds like this dude won’t have a job for long and the school system will probably loose in court for fraud and deceptive advertising.
@@cinderwolf32 The part where Mastercard is asking for their stuff back. That is embedded software in the bios put there by the device owner. It was activated because they have the ability to ping the equipment they own. If Mastercard had sold it legally, they would have destroyed that hard drive and fresh installed windows before it left their possession. There is a very very good chance he bought stolen property. Having it for a long time does not make it un-stolen.
@@sonnyward9857 the software is built into the BIOS not the hard drive. Would be very easy for IT to clean install Windows or even replace the hard drive and forget to clear the call home software in the BIOS (which, by design is hard to deinstall). Also, the seller supposedly had many of them, which makes a bulk buy when MasterCard did a device refresh seem a lot more likely than the seller getting their hands on dozens of identical stolen devices. And MasterCard waited 4 years, when presumably locking the device would be part of the employee off-boarding procedure. Definitely seems more likely that this was a slip up by IT than stolen.
This is very easy to do. Ubuntu runs quite well on the surface also. I mainly use my Surface 3 for watching tv with Hypnotix and screen sharing my home pc with the tablet when im at work. But all in all a decent experience with Ubuntu on the Surface laptop.
More likely this was a corporate owned device and either stolen and resold on eBay illegally or when it was decommissioned, they didn't remove it from their management systems. Surfaces and MacBooks can phone home to check if their serial numbers are registered to a corporate account and then pull policies from that corporate account without your say so since as far as the device is concerned, it still belongs to the business. The root cause here is that Mastercard never released this surface from their management systems. Microsoft is not at fault here. The business was just using the provided features to secure their assets. The failure by the business to release it is the problem. I say this as an IT admin that implements these functions in Windows and Apple laptops I issue to employees.
I didn’t know the Surface had UEFI level security like that. I know for Apple devices it’s practically impossible to get around.
yeah video is clickbait at best. This is also people need to be careful when buying refurbished Thinkpad or other business laptop especially if it was previously owned by Fortune 500 or other fancy companies
That makes more sense. MasterCard has nothing to do with Surface otherwise.
I didn't see anything in the video where the man implied it was a Microsoft problem specifically, but rather a "firmware" problem that cannot be undone - which happens to be in a Microsoft device. I've been in IT for a long time. Plenty of cases where we did new rollouts, and the company was very "here you go... a bonus" with all the old hardware. Problem was, more than one person was fired for not doing the very basic "duh-level" requirements of wiping data, BIOS passwords, security lockouts, and remote WoL credentials. Most of what I worked with was all still built-in configuration stuffs excep for a huge rollout of the Dell Optiplex mini pcs for us inside kiosks. Custom firmware out the wazoo. Once we had to uninstall all of those for a new rollout, it was a whole new ballgame to wipe them for "repurposing".
i doubt it was stolen, he said the one he bought was being sold along with hundreds of others.
who's getting away with illegally selling hundreds of company computers?
My guess is these were corporate devices that somebody forgot to inventory out and now their it logistics “can’t find them”
either that or they were stolen and sold illegally on e bay.
@@mapl3mage
I don't think it was stolen.
If Mastercard owned it and did nothing for years, then it is a huge negligence from different layers.
Also, how will Mastercard claim the insurance? and how will Mastercard discard it from the inventory?
most likely it was handed out to employees and 1 guy took it home and didn't even wipe it or anything.. so the laptop was still under policy.@@eng3d
Also, this hardware has been written off as it had depreciated years ago. Not to mention Surface warranties are notoriously short. Major companies replace hardware once the extended warranties expire. This was more than likely sold by a recycler. If it was stolen the failsafe would have been activated immediately, especially since it belonged to a credit card company.
That's exactly what happens, I find a couple absolute computrace at the dump. Although I've never seen them actually activate the "LOCKED" screen yet.
1. USB stick $4.99
2. Linux distro $0.00
Beating Microsoft and MasterCard in the same day? Priceless
same ad for Visa
This wasn’t Microsofts fault.
@@MyLibertyTV but we can agree here that removing a proprietary crap like windows from the tablet and installing a (mostly) free Linux OS which re-enabled its functionality at *NO COST* was a killer move.As far as we know the lock was implemented via windows.
@@MyLibertyTV It was a Microsoft Surface after all…wasn’t it??
@@The_Last_Ninja They made it. They didn't install the virus on it, steal it, and sell it on ebay.
Congratulations Mastercard, you have been Linuxed.
@@wazza33racer nope, computrace can install on Linux too. It's a pesky rootkit.
lmao
Fr
@@RealJonDoeDon't work with older PC. Even with newer update of Linux can make incompatible.
Some Linux can ignore requests. Depends how Linux developer's desire to build Linux with their own preference.
Pwned by a penguin.
It's now a... *Canonical Surface*
Canonical* :3
It was a cannon event
@@fluoriteByte :3
@@fluoriteByte:3
@@fluoriteByte :3
I'm so glad I learned Linux as a teenager. I'm 32 now. It's still serving me well to this day. Never let your hardware die before it's ready to go. Awesome work.
I forced my 4 kids to only use linux lmao. It was fun but they thank me for it now.
if you can solder, hardware almost never really dies....
@@98f5your poor children, lol. I've tried Linux so many times and it ends up pissing me off. I do have a server running Xigmanas on free BSD, and that's okay because it's simple. The ZFS file system is really cool. I also keep a VM of Ubuntu just in case I need to recover my data from hard drives formatted with Ext4. But for general computing I'm squarely in the Windows garden because I can work much faster with Microsoft products than in any open source solution.
Right on man!
Try finding an ISA video card lol
Mastercard, creating new Linux users one day at a time.
There are some things money can't buy.😂
Installing Linux on your device? Priceless.
😂😂😂😂😂
One tablet at a time :)
More like Windows 11. Making Windows WORSE with every new version.
You may already know this but Computrace is not exclusive to the Surface. It can be in any computer - but especially one geared for "enterprise" markets. It had it in my old Lenovo ThinkPad T450 but fortunately I was able to "permanently" disable it via the UEFI config shortly after unboxing.
Presumably if the device is brought brand new then the feature is not an issue / in use.
A non issue :)
@@ArmChairPlum You would assume so. But then, you do know how to spell assume, don't you?
@@ArmChairPlum Just an FYI. Dell will add this to your software list if you have a Dell Enterprise purchase contract ... so it can come from the manufacture with Computrace on it.
@@DucNguyen-bd5ir I've seen a lot of bioses with Computrace on them in the shop I work but haven't run into one yet where it's in use....Thank God. It's a good idea in some cases but pity the guy who buys used equipment and it's been activated. I'm sure there must be a way around it but who's going to bother themselves for a 200 or 300 dollar used device?
@@funguseaterAI Theoretically, if you are taking a machine out of the box from the factory, it shouldn't have been enabled in the first place. But that was why I used quotes around "permanently", because fundamentally it isn't technically feasible for a home user to test that it has actually been disabled or not.
This was previously owned by MasterCard, and was not properly reset before MasterCard got rid of it. They probably just got around to cleaning up the mess from their previous admin.
I'm just replying here in hopes that Matt sees my comment. You can bring up the keyboard anytime by swiping up from the bottom! 7:10
Yep, they won't have removed them from intune properly and it'll be shown as a corporate device.
It's also possible that they have the policy set to require enrollment on boot.
That setting persists in uefi.
Unless you clear all secure keys from it.
Have had this issue with govt issued devices during covid. They require internet during windows install and also rename themselves to their naming scheme.
just getting around to cleaning up the mess only almost 5 years later... sounds about right!
You guys missed the most probable situation, an employee for Mastercard likely sold the device instead of sending it back to IT. The device likely is still owned by Mastercard and was illegally sold.
@@leefhead1 this is really not a likely scenario. If the device was not returned, they would have reclaimed it. Since it was returned it was probably just put in a pile and forgotten about.
Better to learn linux now rather than later, if you don't want to be forced to buy new hardware. Microsoft is blocking PCs with older CPUS and TPM chips from receiving windows 11 upgrades.
So they can spy on you? Steal your data? Conspiracy theories! Lol
Rufus fixes that. I have 11 on all my orders pcs and laptops except for 1, unsure why it keeps failing.
thats not a bad thing. win 11 is garbage from what i've been reading and it'll just send more and more to linux. its a win/win for the customers.
@@Igorath there are places that linux hasn't covered well yet. My linux laptop still derps on dual graphics and debian forums are like "hurr durr dual graphics are hard". Thankfully I don't need it so screw tinkering until I have nothing better to do.
@@Igorathyou mean, it's a lin/lin for the customers 😏
You don't need to be a nerd for Linux. It's not about the OS its about your mindset. Works different? Thankfully yes. U have to get used to it? For sure. Worth it? Fcuk yeah.
yeah its already growing on me.
It's not hard to just get things working. A total noob can figure out how to install Arch without much problem. Whether they'll get everything to work or work correctly is what separates the nerds from the noobs.
@@joemann7971 there isn't much to get everything working correctly in Ubuntu, it works great out of the box, unless you have some custom software needs, that require a bit more knowledge how to set it up.
You don't sound like someone involved much into Linux?
A noob may have hard time installing Arch, but on the other hand - it doesn't take a nerd to have an up and running Arch, everything working fine. (unless you do something especially special, I don't know).
@@moetocafe no. The issue is PC manufacturers sometimes add proprietary crap into the machine that only work properly with Windows.
I had an MSI GS65 laptop that would always go into an apparent hardware locked airplane mode with no way to get it out of airplane mode without a reboot. I eventually found a workaround that would allow linux to be able to take it out of airplane mode but it wouldn't work reliably. I eventually just gave up and just disabled sleep. Since it had a fairly fast NVME drive, I just enabled hibernate as a sort of permanent workaround.
@@joemann7971 couldn't that airplane mode be disabled in bios or hidden/service bios (if any) ?
I had sleeping issues with my PC as well (I run on Debian), but managed to fix it.
When I was working at a local computer repair store, they ended up buying an HP laptop that also had CompuTrace activated. We also ended up putting Linux Mint on it and used it for in store use only. This was back in about 2011.
My guess is that Ubuntu has support for some of the features offered on the surface pro. The program used to make the ISO bootable on a thumb drive shouldnt have any bearing on the OS functionality. Ubuntu is one of the most stable, well-documented, and well-supported Linux distros around.This is likely why it worked so well. Linux for the win. Always good to keep a bootable drive around with a popular distro.
A drive loaded with Ventoy and a bunch of ISOs is another good thing to keep around
@@SigmaMan1448 + for Ventoy, I have had certain computers not boot some distros. It's not really the distro itself thats the problem, it's the way the computer is booting it. You can have some issues with EFI stuff.
"The program used to make the ISO bootable on a thumb drive shouldnt have any bearing on the OS functionality." It shouldn't, but sometimes it does. And Ventoy is absolutely great and I have a 32GB thumb full of ISOs, but sometimes it doesn't work and I have to make a bootable drive in the old fashioned way. But it's still better than Windows.
@@Dragon_Slayer_Ornstein Ventoy allows you to install the necessary keys to make the secure boot process happy.
@@JeanPierreWhiteif the previous company has locked down the bios then perhaps no. You may not be able to import the certificate into the secure boot store.
although you can't remove or prevent the Absolute software from installing on windows. You can stop it from running and connecting to the remote servers. Install windows and do not connect to the internet, remove the service from the registry and create a new registry folder with the same name, change the permissions so only your user has permission to modify it. The permissions are very important otherwise it will just remove and add it's registry stuff back. restart and the Absolute services/processes will no longer be run. I can't remember the exact names of the services and such but that's the method I used.
When I was younger and e-bay first launched, my friend bought a car from there, transferred the title, had it registered and more than a year later, some kind of federal agents showed up at her house and took her car back. It's not uncommon for people to sell stolen goods on e-bay.
Yes but it was a tribunal who decided it, and not just an evil company.
@@eng3dbruh in this case they probably locked all their old surfaces because they upgraded to new ones.. just that.. this particular one must've been sold by an employee who left.
"Transferred the title"
Sorry but if there's a title of ownership, the feds couldn't take the car back as stolen, because that's not how things work with property management. Something that might surprise you: someone can literally forge your house's deed with their name on it, and you'd be incapable of getting the police to evict them and arrest them for fraud. You'd be required to take the criminals to civil court to fight over ownership. That or pay them to go away. Big problem with this kind of fraud happening right now.
The only reason the law enforcement would have leave to take the vehicle if a title of ownership was presentable, would be if the car was used in the committing of a crime, or if there are liens out on the owners name due to non-payment of debts. If the feds are taking it, it's likely because the IRS told them to take the car, and your friend was less than fully forthcoming about her financial situation and her willingness to pay her taxes.
@@grahamb7947 You made me laugh, thanks that's so funny
I should imagine that it was bought and then not used by the company, with the product then being sold on without any thought of what was on the computer hidden deep in the systems. Some inventory has been done and then just an automatic shut off as they probably thought that after 5 years the Microsoft programming would have died anyway! Or even that is what they programme into their own stuff so no one can continue to use their old work stuff. Most companies I know replace all their computers after five years.
Not being able to own your tech is the most frustrating part.
In this case, I would say it was an ex corporate device from a leasing company.
They (Mastercard) will have not properly released the device from management.
So he owns the device but would need to get Mastercard to both lift and remove it properly.
The device could have windows installed back on it. Just need to clear the uefi secure boot tpm keys.
Create a local account on boot and don't connect it to the internet (at least for the first boot)
Just imagine that you tell an old farmer that you are not allowed to open the hood or modified an attachment.
@@robumf I imagine I'd be shot in place.
@@robumf John Deere?
Exactly. that's why i hate mobile devices. It's a pain to flash a new ROM or kernel on a mobile phone.
The good thing about Linux is that you own your OS and you own your hardware. Microsoft and Apple can at any moment remote kill your device if they wish to.
TRUTH!
Fuck Microsoft and Apple!
I never thoght about it but *remote kill* - is it mean that my data on a device won't be available? Or it would but throughout different OS?
I mean, if they do, they'll brick my OS or they'll brick all of my SSD/HDDs with all the data I "own" on it?
So companies can lock down devices that are stolen (by either Employees, or otherwise) and that annoys you? Also, this video wasn't even locked using Intune. Dude probably couldve just reinstalled Windows and been fine.
@hunterzone4846 Bitlocker is a joke. We routinely decommission laptops and workstation PC's for our company. I've removed the bitlocker on all the computers I decided to take home with me.
Linux can't stop Apple from remote killing a Mac.
If a MacBook was reported stolen, you won't be able to install Linux in it at all since you have to activate it online using your apple ID before it let's you install it at all
It looks like Mastercard didn't remove the UUID of the hardware from their Azure tenant which probably managed their endpoints. I had a similar problem with my old surface 3 ironically with a company I used to run. I closed the company and the associated tenant forgetting to remove the devices from endpoint management. A year later the surface got locked. This was also used to encrypt the drive, DOH. Luckily, I could still log into the old Azure tenant and remove and reset the device and bingo it worked
Good that there is a software to detect which device was stolen, but not after 5 years when all the devices were sold to legitimate people that paid for them
Long time linux user here, great job figuring out what to do on your own! I’ve been through the same trial and error process figuring out what worked on my hardware and testing out different distros and truly the learning never stops. You should be proud of yourself for getting as far as you did!
Thank you! I was really impressed with all the support out there, and honestly I really was proud that I got it to work.
I'm always glad to see big corps motivating people into Linux :D
3:45 The CSR implied that it was probably a mistake and now tons of tablets, etc are frozen? This sounds like the beginning of a class action lawsuit to me.
As others have pointed out, I'm sure it USED to belong to MasterCard, but really, locking up an 8 year old device? C'mon!
More than likely these devices were meant to be destroyed because of the sensitive information that would be on them but someone decided to resell them on. It's shitty but Mastercard has every right to prevent these devices from being used.
It sucks but it's the seller that's at fault here.
@@TonySquared09 Why not just destroy and replace the storage/SSD? Makes sense to do that instead of destroy the entire device. (unless M$ is being crappy and soldering the storage to the motherboard in which that would sorta make sense)
@@shane_gentle it's not about "M$" soldering shit to the motherboard, it's about data compliance. Depending on the country or sensitivity of the data, data compliance generally means the destruction of the entire device and with this being an ex-MasterCard based device, it would most definitely be up there with things that need destroying.
@@TonySquared09 makes sense
Switch "used to belong to MasterCard" with "stolen from MasterCard", and I'm with you.
I put Linux Mint 22 on an old Surface Pro 3 I've had since new. Brilliant.
YEah Mint is superior to plain Ubuntu.
@@JeanPierreWhiteCompany behind ubuntu sucks
@notanetcheryou suck
At the Office where I worked, I gave life back to an old and sluggish 2013 iMac running OS Sierra. No way to update, Apple had already scrubbed down their servers and nothing to do with it, it was really, really slow and sluggish with tons of pop ups and old company credentials to validate. I installed Fedora 40 using an old Fedora Burner (pre-installer) for the USB device. When initializing inside the MAC -prior to using the fedora software, initialize as follows: MS-DOS (FAT) and the scheme to GUID Partition Map. When booting, press the mac sign and boot from the device to run, install, and when formatting claim all the used / unused space for the new OS. Long story short, running better than when it was new, new face, high security and for a new purpose.
Nothing comes from the factory with Absolute Software installed. It is a product used by companies to keep track their computers and to remotely lock and wipe them. I worked at a company that used it.
Little did it know, the Microsoft Surface became 5 times more valuable and greatly loved after the transition.
I hope Louis Rossman sees this!
Indeed, I hope @rossmanngroup sees this too!
He would say yeah he shouldn't buy stolen goods
@@ANGELROB_YT If they were really stolen back in 2019, MC would have bricked them a long time ago. They probably just forgot that they sold a batch of them after they were replaced back then and they forgot to remove them from asset inventory. It is very frequent to see ebay seller puchasing lease end tech in big lots and sell them on ebay. Stolen good seller tend to be less visible especialy for large batches. But in fact we currently don't know for sure.
This is not the anti-consumer garbage you think it is.
@@ANGELROB_YT Maybe not stolen. Maybe someone got sloppy didn't delete the computer from their management inventory when they sold it legally.
cool video! nice to see more linux use. though to play devils advocate, what are odds this was actually a mastercard office device or given to employees as part of their perks and they just got rid of it on ebay xD
Quite high. He bought a stolen device.
highly likely
Somebody sold that tablet illegally on ebay - there needed to be enrollment done of that device that linked it to device management under Windows - it cannot do it on it's own - you need IT support to supply passwords to begin this process.
If it has been booted up and connects to the device management system it will be locked out if it has been tagged as stolen or missing.
That's what I assumed, but I'm confused why it took 4 years for this to happen.
Its possible no laws were broken. The IT department just got sloppy when recycling old tablets.
@@gattmolson people leave, devices get lost in a shuffle.. IT crowd decided to do a full audit of systems and "locked" each they couldn't find. Standard practice. So if you could get hold of someone, then you could probably get it removed. Try emailing support, or any mastercard emails.
@@gattmolson They only care about the data on the device - a lost laptop is the least of their worries.
It is called Microsoft Intune and only when you try to logon into the corp domain account it then phones home and checks if the device has been tagged as lost and then it will brick Windows.
The firmware does not do that hence why he could install Ubuntu and I suspect he never re-installed Windows since he got from ebay and simply renamed the user account credentials to his own.
Always re-install Windows when buying used.
@@leonidas14775 A lot was sent to a recycler and instead of being turned into e-waste they resold it to the supplier on ebay.
Corp would have marked them as gone from their asset register as common practice - the ebay seller should have reimaged them with fresh Windows.
Work around doesn't actually address the problem. You could still get yourself in trouble for having "stolen" equipment.
You might say there isnt much info for av video like this but its always facinating to hear people who arent very technology knowledged try something like this, it makes me smile that people are learning tech, even if it a slow process
GET LINUXED MASTERCARD!!!!!!!
most likely lease returns (with that quantity available) or part of a package that they had for customers to replace older card processing hardware that someone forgot to take out of their system when retired and they finally ran an inventory.
>Normal RUclipsr uploads a Linux Video ...
RUclips algorythm: Linux users, you have been summoned!
Good Job, Matt!
Can't wait for more.
LOL, kinda of crazy. Sadly I have nothing else to say about Linux.
@@gattmolson Spare machines are great for trying out some different versions. It's fun to explore the different tools and setups that each version has to offer. I personally have settled on MX Linux KDE for my daily driver. Worst case, even if you don't like them, you at least have some content. MAME and RetroArch both will run on Linux, too. In fact, Retroarch even has a few distros dedicated for RetroArch, like Lakka.
So glad I get the SP5 when I did. From what I remember, it is the only model completely compatible with surface-kernel.
Terrible that this happened. Unfortunate you could not enjoy your choice of tools on your equipment. Glad you found linux to be an acceptable work around. Could be a great learning experience.
The serial number is pushed into NVRAM by the bootloader and Windows then reads it from there. It's actually pretty trivial to patch the EFI bootloader to prevent this, it's actually how you pirate Windows nowadays by tricking it into thinking it's an OEM device with a valid serial number.
The man is making videos since 14 years. And this is his highest viewed video which is posted just 5 days back. Thats power of linux and common man!!
Anyone who starts to daily drive Linux never comes back the same, especially as no ‘man’
in devices that support it, computrace is an option you can turn on but warns you it can never be turned off. when enabled the computrace option disappears usually.
Someone didn't use Google, or Bing ... lol.
To turn off Absolute Software on a Microsoft Surface, follow these steps:
Shut down your Surface and wait about 10 seconds to ensure it's off.
Press and hold the Volume-up button and - at the same time - press and release the Power button.
As the Microsoft or Surface logo appears on your screen, continue to hold the Volume-up button until the UEFI screen appears.
Run the following commands in the PowerShell to disable Absolute Software's Lojack:
Get-HPBIOSSetting -Name "Absolute Persistence Module Current State"
Set-HPBIOSSettingValue -Name "Permanent Disable Absolute Persistence Module Set Once" -Value "Yes"
Get-HPBIOSSetting and Set-HPBIOSSettingValue are specific to HP systems. Is there an equivalent for Surface devices?
What happened was that it was a device given by Mastercard to an employee and that employee probably sold it without permission and since it wasnt decommisioned properly, they locked the device. So either you bought a stolen device or a improperly decomissioned one
5:05 i believe not every microsoft surface is like that, like one your viewers commented, its most likely a corporate device that they forgot to remove in their systems👍
Old thinkpads have this too, however there you have the option of flashing a custom bios such as Coreboot which completely removes any and all traces of it. its also possible to short out a chip to reset it however this is quite risky
Everyone should stay as farther away from Microsoft as possible.
And don't say "I'm happy to be MS slave" - this is exactly what gives them the power to abuse you like that.
I hate Microsoft deeply and prefer to use Linux for many tasks, but sweeping statements telling me how to live make me not care about your opinion
@@cinderwolf32 you don't have to. You can continue to be their loyal customer and see how that benefits you :) I was just sharing my opinion - you may or may not like it and that's fine.
Sharing information is good. Just keep in mind that telling other people what they *should* do or *should* think will likely never get people who already hold a different opinion to consider your arguments.
@@cinderwolf32 assume I'm giving advise, not TELLING people what to do. But Microsoft surely are much more convincing, than me :))
... as far away from ...
This makes me curious about my Surface 5 I haven't used in ages!Good looking out!
The “Shawna quit” was very funny for some reason
It got me too
One of two possibilities here. First, this was a Mastercard leased/owned device and when they were done using it they disposed of it and whoever ended up with the device resold it without making sure that Mastercard had first removed it from their Mobile Device Management System. The admins in charge of the asset management are just lax in their work and now you have a Surface that will never activate MS until Mastercard does a major inventory.
Second (and very likely) is that it was stolen from Mastercard and then resold on eBay (I know right? Like who would ever do that?) and that is why it is locked out from Windows activation. Having dealt with payment card companies like Mastercard, Visa, American Express, I would suspect that this is stolen as they keep a pretty tight control on their devices for security reasons.
I had a Surface Laptop 5 and it was a pain in the ass to get Linux to work. Only the distro Nobara booted. Everything worked great except it doesn’t go to sleep when I close the lid.
@notanetcher clearly you haven’t actually tried to use Linux, or just tried Arch and gave up.
@notanetcher What distro?
"it's not a virus, it's a built in feature" sums up contemporary Windows tbh
Louis Rossman would be interested in this video😂
Who is that guy?
@@billymania11 Go ahead and google him. It's worth it if you're against monopolies and owning your own stuff. Also right to repair issues.
I've heard that it's stored on a separate EEPROM/SPI flash to survive a UEFI reflash so it might be possible to desolder that, flash the UEFI (CH341), format the drive (including the HPA, Computrace likes to hide there) and have a functioning system. Or just keep using Linux, that's probably the better option.
Wow, I'm surprise they didn't lock it at the bootstrap loader stage, Luckily they didn't. But Just in case I never going to buy a used Microsoft surface now, that's for sure.
Not all Surfaces have something like this installed, it's just that this device was likely stolen by a MasterCard employee and sold online. Instead you should be careful to only buy used electronics from trusted sellers.
Can happen with any corporate laptop. HP does the same too.
@@angryox3102 can confirm. Apple Uses MDM and I seen that in action too. Can't restore it, can't boot from anything except the OS that's on it or recovery. If you try a USB it skips it.
@@mjdxp5688 Happens even with trusted sellers with hundreds of thousands of sales over many years. The large ones don't buy from individuals who might be selling a stolen device but rather in bulk from corporate auctions, devices that were leased for a few years and then returned and now have no re-lease value since they're outdated. Although they'll usually have been wiped or had the storage removed prior to return, sometimes the lessee will neglect to release some of the devices from remote management before they return them. Then the reseller buys a big pallet full of them, puts a fresh install of Windows on, and sells them to customers on eBay. The reseller will have been assured as part of their purchase that all devices have been removed from remote management, and even if they checked BIOS and saw Computrace present that would not be unusual and there wouldn't be any reason to believe it would later be used to lock an end user's computer. It's unfortunate these screwups happen, but the reseller could probably get the lock released for Matt. Or if they couldn't, then considering the circumstances they might be willing to provide him an exchange for a device of comparable value even years after his original purchase.
I am guessing it may have been a "Joined" device which means it was a device which was joined to MasterCard's corporate network domain, basically a network workstation with a certificate on it to authenticate to MasterCard and they would have had full control over it until you completely delete everything bringing it back to factory settings or installing a new OS.
so its possible a stolen device sold on ebay? or the seller or Mastercard IT didn't follow the process to de-commission the device. usuall when I try to buy a used laptop, the 1st thing is to check if the device have bios locked or not.
Tux is happy to welcome to the GNU Club Penguin. Enjoy the party.
Joke aside, if you want a suggestion for a distro for home desktop and laptop usage, I'd suggest going with Linux Mint with Cinnamon or looking into distros that use KDE Plasma Desktop environment. You could also look around the start menu to see if you can find the distro's app store/package manager, then research what packages you need for Cinnamon or KDE Plasma and then look into how to change the Desktop environment from the login screen once you're installed one of those. The reason I suggest these two is because they're going to look familiar to you since you're leaving Microsoft. Gnome might be better if you prefer a touch screen, though.
Anyway, enjoy the OS and your tablet.
You had a good 5 year run with the tablet. Please hold no ill will towards MasterCard. Do not install Quibble and load a version of Windows on a non-NTFS partition, bypassing Computrace locking mechanism
Quibble? I haven’t heard of that bootloader in YEARS.
Love the way you phrased that! 😃😃😃😃😃😃
You can't install windows on a non- NTFS partition. You haven't been able to do that since Windows Vista came out. Maybe you are thinking of installing windows on an MBR partition disk layout instead of the GPT partition layout now in common use? Unfortunately Surface Pro firmware requires a GPT layout to boot, and there is no support for MBR legacy booting at all.
@@shaunhwumm so here's the thing now. we can run windows 10 on ext4 using quibble
You know what they say "You will own nothing and act like you are happy, or they will destroy your life."
After that initial wipe you should actually be fine to go back to windows. However, enjoy linux and i hope they have good ink drivers to support your work!
I wish it was that easy, but after deleting all partitions, making new ones formating and reinstalling windows BOOM! It comes right back. Computrace lives in the UFEI and comes right back.
Computrace will re-write its files from the UEFI chip to the windows partition. It might be possible to dump the firmware, reverse engineer the uefi, and reflash the chip, but that's not quick nor easy.
@@gattmolson In the industry, we call that "malware".
@@classicrockonly Yeah, that computer is bugged sadly. You would have to reflash its firmware* and other onboard memory to stock (and hope nothing in it relies on any one-time-programmable CPU fuses that the computrace thing has burned)
* and that's assuming there is a non-backdoored firmware out there and that the CPU won't refuse to boot it due ot key mismatch
@@gattmolson It behaves like a virus similar to Spectre and Meltdown, that is disgusting.
Similar to you, I bought a used SurfacePro 4 from eBay from a reputable seller. The booting up "Surface" display repeats a couple of times. It used purely to view to view movies and TV show episodes I copied from their original media; and music I copied from my CDs and vinyl discs. Surface is hardly what I would consider a "serious" laptop type PC.
Mastercard didn't do anything. Their IT department decommissioned a bunch of road computers and someone "recycled them" on ebay. They were fine and then one day the mdm team probably locked a ton of old devices. What you do is actually install windows fresh and then pick the I don't have internet until you get to the desktop and then DO NOT connect a windows account. What they need to do is remove this from their device management. You may not be able to email them because it's a portal and unfortunately the seller is in the wrong, not mastercard. Once you're in windows you can block the mdm with a powershell script. You can also install windows Ameliorated edition.
did lots of google searching before installing ubuntu and couldn't find this information. Thanks!
@@gattmolson I work at a 100.000 employee company. You likely wouldn't even get to the right department if you worked at Mastercard 😂
The surface requires a UEFI boot manager to load any OS. The other Linux distros would load from a Rufus USB stick. Try Ventoy for iso's, I have a ventoy and have ten different Linux, Win XP , Win 7, 8 ,10 & 11. I use it to boot to a live trial of a distro or to make a Virtual Machine. At 75, I still like to tinker with PC's , I have had a PC since 1979.
This is an actual big issue with the 2nd hand market from these companies that sell their old stock.
I've worked as a sysadmin for the better part of 13 years and this software is nice when something is stolen or misplaced as it enables you to remote wipe devices.
HOWEVER
The admin running the software needs to be aware of when the company mass sells things so that you dont mark a sold item as stolen which it looks to be in your case.
If anything what I suspect is that the admin was rather lax on this software and the CFO or someone from finance wanted a list of devices that they actively maintain and keep.
Rather than doing the min that youd expect they just line item said all of these devices that haven't been seen in x number of days we're calling them lost which is what that screen is.
Keep in mind that nearly no hardware that you buy second hand is immune from this software as I've found blackberries and android phones with it installed and it's just as troublesome.
Sorry my dude but hey if nothing else you've dipped your toes into linux land and i hope you enjoy your stay.
completely agree with you.
That's definitely a possibility, it's also likely the device was stolen. I've worked in a school environment and kids would steal Chromebooks and sell them online sometimes. We got calls from people saying the device was locked asking us to unlock them.
@@mjdxp5688 I remember a girl called in once saying her boyfriend gave her a phone for her birthday that displayed that it was lost or stolen.
@@mjdxp5688one seller having hundreds of them though makes that less likely. I mean, I guess someone could have broken into MasterCard HQ and raided their IT office, but it seems much more likely that IT had done a bulk sale after they did a big device refresh.
Would have been a different story if the seller was offloading them in 1s and 2s.
But, this guy buys a Surface in a way that he has every reason to believe is legitimate, and then some faceless megacorp deprives him of the use of his device, perhaps because of their own mistake, and won't respond to him. That actually looks a bit like theft to me, though not the sort all the commenters are talking about. Linux to the rescue (and Visa for a credit card).
its got the microsoft logo because of the motherboard being made by microsoft, in case anyone was curious
The only thing I can think of is that Mastercard owned the laptop, and the seller got a hold of it. It's got nothing to do with Microsoft or Linux. Blame the seller for selling a company laptop.
A lot of linux distros require that TPM is disabled in bios which is in the security section.
I too was a victim of the hardware product bitlocker. I initially bought the laptop with Windows 10, and tried installing Linux Mint side by side on dual boot as I used to do before. Installation was successful, but upon reboot, Windows boot manager was asking me for the bitlocker key. Obviously, Microsoft has hostaged MY hardware to be able to run only Microsoft Windows and I cannot install any other OS into it. I had to reinstall later Windows 11 and told my supplier to skip applying encryption into hardware. This time, the dual boot installation of Linux MINT was successful and the dual boot grub appeared upon boot up. So happy to have reclaimed my own hardware.
AMI and Phoenix UEFI can be edited,remove or add uefi modules.Edittor is available from both ami and phoenix
You should try out KDE plasma, its more similar to windows than gnome (not sure how the touch stuff compares, tho i would assume its pretty good)
GNOME is probably better for a touchscreen than KDE.
@@mjdxp5688 oh ok, i dont have any touch devices that run full linux so i wouldnt know for sure
@@mjdxp5688100% agree. Also W pfp.
@@mjdxp5688 I dunno, if you used windows w/touch, KDE feels very similar. [have used KDE, and touch laptops, since 2013]
It's running endpoint protection software. Most big companies and ALL publicly listed companies run something like that. So if any equipment is stolen, the thief can't steal data or use it to access the network. It can be remotely bricked. My company is starting to work with public companies and without exception they all require us to show we have a security policy around using endpoint protection for mobile devices.
Microsoft always gives us more reasons to switch to Linux.
This is not really Microsoft thing - it's companies that buy these devices and put their own "Security" features that block users from doing anything if device was lost or sold. Good luck trying to go around this shit on Macbook
@notanetcherno it doesn’t. SW dev prefer Linux destro over windows on any given day. Only non-tech people loves Microsoft crap
@notanetcher more like @notatechperson
i just chuckled really hard the way you described that nerd im gonna use it more often now
I see a lot of reactions here, it must be a stolen one!
Nothing could be further from the truth!
An old friend buys a Lenovo laptop on my advice in the store, so not stolen.
Until one day he could no longer access his laptop because bitlocker was activated by microsoft.
They thought that he had made suspicious login attempts to encrypt his data.
Since it is an older man who only uses his computer for digital banking and reading emails, this is a disgrace!
Now Linux Mint and Libre Office are installed.
Bitlocker is activated by default. If you are comfortable having it turned off it's one of the first things you do when you get a new windows laptop. Turn off bitlocker. It will run slightly faster as well.
@@JeanPierreWhite I myself have turned off bitlocker on his new windows 11 laptop, but I don't trust Microsoft!
I also still have windows 10 running for various applications, but the updates that I can't turn off are worrying me!
You should try Fedora 40 spin KDE plasma 6 for better touch gestures.
Kubuntu 24.10 now has Plasma 6.1 as well. He should upgrade.
I'm guessing this is most likely a stolen device that had this flashed to it so it could be remotely bricked to discourage stealing. Make sure to vet computer resellers before doing business with them or else there's a chance they'll sell you stuff pike like this.
If the ebay seller had a bunch of them - they probably were leased to MasterCard, aged out and were taken off the lease. Then sold as scrap to recycler. Recycler then sold it to an ebay reseller….
@@dereketnyre7156 I'd say this too. A combo that would be the IT at Mastercard not removing them properly from management or ensuring they are wiped. (Nothing persistent in the UEFI)
The leasing agency should also have made sure that the devices were fit to resell. ie that Mastercard has done their part.
Otherwise charge them for bricked devices.
For reference, I'm basing this on a scheme at schools in NZ and the leasing company wants us to ensure that devices are appropriately decommissioned.
Otherwise they can't onsell after refurbing the units...
Bravo prof. Congrats beating big guy. Keep teaching
Hey, I work in IT for a Pharmaceutical company that does the same thing. Sounds like someone stole it from work, never returned it when they left/were fired, or it was stolen from someone who used to work at MasterCard (this happens a lot). Typically flashing the BIOS and reinstalling Windows should fix the issue.
Yeah, but with 100 such devices? Probably just sold by the recycler, rather than stolen.
@@shoham00 100 devices stolen in a year isn't crazy. My company has about 20 locations worldwide and at mine, we probably have 20-30 a year stolen. Thieves tend to target business people at the airport and break into their rental cars to steal their luggage a lot, especially overseas.
@@shoham00 It's not unlikely, I know my company switched to the Surface when it first came out for our salesforce since it was easy for them to use on a plane and in meetings with customers. When you have a company with thousands of employees worldwide having 100 or so devices lost or stolen in a year isn't crazy. Thieves like to target business people at the airport and frequently break into rental cars to steal luggage, especially overseas.
@@darius5066 What I meant was simply that a single seller having come by a batch of 100 or more of the same device sounds a lot more like recycling than theft. No doubt a company could lose 100+ devices annually - but for all of those stolen items - which were presumably stolen as singletons - to wind up in the hands of a single seller is unlikely, and for there to be a single theft of hundreds of items also seems somewhat unlikely.
Happy computing. If you just use it for surfing and email, it should work fine.
I have used Ubuntu Linux since 2007. I quickly found that where Windows was becoming more and more difficult to perform daily tasks, Linux was getting easier to use.
I built the machine I'm using right now in 2013 and it has run nearly 24/7 since then. ASUS Z87 board with a Gen 4 I7 4770K cpu 16 GB RAM and an EVGA Gforce 1080 Just upgraded the SSD to a 4TB this year
FREEDOM! (shouted at top of lungs with Scottish accent)
Over here I'd have considered to press charges for computer sabotage.
That was probably a company tablet, actually not microsofts fault this time around 😂. Anti theft features built into firmware makes a lot of sense.
It just sucks for the second hand market if they get sold. If mastercard did allow these to be resold they should of disabled auth for it, instead if screwing over a bunch of people.
That said, on any low power device, this tablet included, Linux is just better, its current, and usually a lot more performant. You dont really lose anything since this tablet probably isnt being used to play competetive online games. 😂 If I were to put it on a weird and unique device like a tablet I think ubuntu would be my first choice as well.
Yes indeed. Only problem with Linux is that there is some software that isn't on Linux, and the alternatives are maybe not so good, or are not as widely used. And then tend to be concentrated in the graphics/photography area.
fedora is one of the best distros for tablet pcs. I've installed it on very odd hardware and everything was supported out of the box unlike ubuntu.
MS supports Computrace.
Without knowing the serial, it’s hard to say for sure why it was frozen. Mastercard will freeze a device if it’s been marked as lost/stolen. Chances are, this was stolen and sold illegally, or it was in the Mastercard inventory and came up missing. Feel free to send the serial to the asset recovery team and they can look into this for you.
And if you’d like a quicker response, let me know an email I can reach you at and I’ll figure out why it was frozen. I work at MC and can get it unfrozen pretty quickly.
These were probably life cycled machines, and on their way to recycle. A lot of big corporations want these destroyed since the storage is not removable. They are still stuck in the platter hard drive thinking. Happy e-waste heaven. Since these machines could contain sensitive data, they wanted to keep it out of anyone's hands. 4 ideas that come to mind, is that it didn't properly make it through the companies disposal process. It did go through the process and there was a documentation error. Their disposal process includes destroying the machine. It wasn't supposed to leave the company (hot). Either way their data is mostly safe now. Common error, using the term "burn" while creating a bootable USB, even more so while using an iso.
Subscribed, thanks for the info And encouragement bro. I'm gunna try to do this on my pro 8.
I assume you’re a high school teacher ? Seem like a cool guy to have as a teacher certainly i hope your students appreciate your laid back vibes
Average Linux W
"it shows these happy people tech-connecting" 😂😂
I do repairs on things like this for a living- Chances are pretty good that that unit was licensed to some corporate entity, & might have been stolen, either by the guy that sold it to you, or whoever supplied him. Regular M$ Surface units don't usually have those features even listed in their bios, so the avg consumer doesn't have access to them. I've dealt with McDonalds, Sonic, Samsung /doordash /grubhub type ones as well as POS & other systems nearly all of them can "phone-Home" if they are still listed in their systems. That might have been an actual MasterCard office unit- it's doubtful, but possible. In some cases it's removable or can be disabled but usually only through what is an admin password protected bios. And there are some cases that one a unit is registered with the security provider it will always red-flag the device, even it it was obtained legally. for not being a techie, god job finding something else that worked for you.
if its in Intune, the only way to get the MDM agent to stop phoning home and being registered to the previous owner is for said previous owner to do something on their end, and then you have the device initiate another call-home and it unlocks/removes itself. This all seems to be doable from within UEFI if there is a 'supported network adapter' connected. [source: bought a Microsoft Surfacebook from a pawn shop; still registered to some (former?) employee of American General Insurance. It had PDFs of her continuing education certifications and such on it, but not a whole lot else. Kubuntu'd the same day i bought it, ET NO PHONE HOME.]
I got iPad at work and it is not much of use without CC or any use for me. So just kept it in drawer wrapped in all kinds of protections.
You will own nothing and you will be angry
yeah blame Mastercard not Microsoft for that one🤣🤣🤣🤣🤣
btw linux alternatives for rufus are: balena etcher and raspberry pi imager. alternatively one can use the dd command. to which all these softwares are basically just a user frontend.
Guy doesn't question the seller of the unit. Just howls about "Microsoft bad x reason!" Seller of the tablet supposedly had hundreds of units on hand selling'em, guy didn't question how ONE PERSON. On EBAY. Had that many tablets to sell. Usually, THEFT IS INVOLVED WHEN THAT HAPPENS, either from a store, or from a company.
Or just decommissioning of old devices which weren’t properly unenrolled…
I’ve gotten multiple computers for free because companies decommissioned them
@@sleepingcattv I've been a Configuration Manager for 25y now. This is not uncommon. I always verify my inventory - and when I was working for a municipal agency, I discovered that about 400 devices were unaccounted for. So the normal procedure is flagging them as "Missing". At first I wasn't allowed to because (hold on to your hats) it would be an indirect admission that we lost hundreds of devices and never took any action.
But I did anyway (who cares what managers think) and in the months following they all popped up, bit by bit. The were in and on cupboards - some clients even had entire secret stores "in case something happened" - or even entire project crews were covertly equipped with the stuff.
So, IT departments, write down your procedures, educate your employees - and most importantly, embed your administrative procedures within the working procedures. And verify often, define and report performance indicators, analyze any discrepancies and take away root causes.
There are entirely legitimate business that deal in equipment that has been disposed of by corporations and other big orgs. The fact that there were so many available makes it MORE likely that it was a legitimate business. But you hate this guy because he's a teacher, I guess.
End of lease or warranty/support contract often triggers batch disposals by corporations.
I love the MicroSoft boot logo along with Ubuntu 😂 beautiful
"It's not a virus, it's a feature" Yep, Microsoft in a nutshell.
Nothing to do with Microsoft, this is part of a Mobile device management class of software used to secure company assets like laptops that are issued to employees, because this is still company property they have every right to secure it, now tyhe issue that come up is when a device is no longer being actively used by the company and they sell i off or want it destroyed. the correct practise is to remove the device from the platform before selling or disposal. This wasn't done. But there is also the equally likely that an employee stole them and tried to resell on on ebay although having so many might mean its more likely old machines that weren't properly removed from their device management software.
Disable the Internal UEFI Shell
Press F2 during startup to enter BIOS setup, then go to Advanced > Boot > Boot Configuration and disable Internal UEFI Shell in the Boot Devices pane. Disable UEFI Secure Boot
Hold down Shift and click Restart, then click Troubleshoot > Advanced options > Start-up Settings > Restart. Next, tap F10 repeatedly to enter BIOS setup, go to Boot Manager, and disable Secure Boot.
Good advice. Thank you.
It’s the secure boot that keeps a hidden backup on your hard disk, trying to boot and stop your new installation. This is good advice and what I did when I bought a new computer . I won’t have MSon any computer I own, because I don’t want to spend 15 minutes on admin every Fffin day. I also installed Linux Mint and it works fine. It’s not your tablet that’s the problem. The problem is the residual operating system.
alternative title: I bought a stolen tablet from ebay. Mastercard locked it and now i'm using linux to circumvent the lock.
Indeed. I love Linux and have been using it for decades but the premise of this video isn’t the great promotion of Linux that that the author thinks it is 😅
Then why didn't MasterCard respond to any of his emails looking for the seller's information? It is bad enough that they waited 4 years, but then when he reaches out in order to try to resolve it (which could include his returning the stolen device) they just totally ignore him.
Even if true, it sounds like the guy repeatedly tried to contact Mastercard and was rebuffed. And the tablet was so old that it most likely would have been scrapped by the corporation anyway. What this video is really saying is that you're taking a big chance buying used hardware off ebay. That could've just as easily been spyware or ransonware as security firmware.
Blame the victim, eh? It might have been stolen, or it might not, but he didn't know it was stolen. I don't know how US law goes on that, but Mastercard ought to be answering his emails.
I could not possibly care less about corporate ownership and it does no good to permalock this machine. It’s a fine plug for Linux.
That ending was hilarious. lol..
You should put MX Linux on it.. it's much more lighter weight and would probably run better on that thing. (actually I would research and make sure it has touch support first). Otherwise, it would make it run faster
Good video. I recommend the RUclips channel SomeOrdinaryGamers and use the channel search feature to look for Linux content (though, I believe he would probably point you to one of the dedicated specialist channels as he creates a variety of content). Notably though, you could try to contact him or comment on his videos, and he might make a video to spread awareness about this Absolute Software (and maybe your channel as a bonus). I already commented about this video on his most recent one, myself, but more voices are better.
Matt is now officially a Final boss to MasterCard
Maybe don’t post videos on RUclips showing that you’re in possession of stolen property?
Where's the part where any proof of it being stolen is shown? Mistakes happen. Lazy IT staff exist.
@@cinderwolf32no kidding, know of a schools IT department where the jerk in charge doesn’t bother to wipe anything from the drives, allows it to out the door to auction. Now the school system is being sued for false claims that the computer was totally sanitized and unlocked. Sounds like this dude won’t have a job for long and the school system will probably loose in court for fraud and deceptive advertising.
@@cinderwolf32 The part where Mastercard is asking for their stuff back. That is embedded software in the bios put there by the device owner. It was activated because they have the ability to ping the equipment they own. If Mastercard had sold it legally, they would have destroyed that hard drive and fresh installed windows before it left their possession. There is a very very good chance he bought stolen property. Having it for a long time does not make it un-stolen.
@@sonnyward9857 the software is built into the BIOS not the hard drive. Would be very easy for IT to clean install Windows or even replace the hard drive and forget to clear the call home software in the BIOS (which, by design is hard to deinstall).
Also, the seller supposedly had many of them, which makes a bulk buy when MasterCard did a device refresh seem a lot more likely than the seller getting their hands on dozens of identical stolen devices. And MasterCard waited 4 years, when presumably locking the device would be part of the employee off-boarding procedure. Definitely seems more likely that this was a slip up by IT than stolen.
This is very easy to do. Ubuntu runs quite well on the surface also. I mainly use my Surface 3 for watching tv with Hypnotix and screen sharing my home pc with the tablet when im at work. But all in all a decent experience with Ubuntu on the Surface laptop.