I wonder how far from an exploit that was if it managed to brick the machines beyond re-boots. Was it the data in his passport or the data the machine got back from some server? Which part could an attacker actually control?