i was just wondering, if anyone knows anyway to prevent this from happening? (other than don't use windows lol)

you could say lock bios, prevent booting from a cd/usb, but cracking the bios or simply resetting it is cake.
Is there anything a someone could do at the user level to fix this or is this purely on MS to fix this flaw?
would encrypting the drive do any good? if so how good is such encryption?

this leaves a HUGE backdoor in the os after you've made this quick change.

any thoughts?

(i wasn't sure where to put this one, mods please move if incorrectly placed)