So they broke it knowingly...
Instead of a big warning as wallpaper or as annoying message at every boot for the next few month they decided to nuke the old UEFIs by putting them on the "deny" list. Which is funny, 'cause updating UEFI often requires bitlocker to be deactivated. I mean completely, not just temporary as it is possible since about 2019, no: boot drive unencrypted. Only to encrypt it again after the updates. Which gets better since, in quite some constellations, bitlocker is activated automatically without anyone knowing (OEM-BIOS setting, HP loves it for example).
Biting the hand that feeds IT
