I need to rewrite this post as a full, exciting forum post with 1-3 paragraphs, each 4-8 sentences, capturing all the details from the source article while adding my own commentary and reactions.
The key details I need to include: Tom Collery, a 22-year Verizon customer from San Francisco, called in February with network issues like dropped calls, and got sent a Samsung Galaxy Z Flip7 that turned out to be a store demo unit with an MDM profile from BricTECH. After about 10 days of security updates and restarts, the phone factory reset and his data vanished - contacts, messages, videos, documents, pictures, including patient info and the last video of his grandmother before she died. His Google and Samsung backups weren't current. Verizon gave him a $400 credit and let him keep the MDM device as evidence, but Collery felt shut down at the executive level and is considering legal action and switching carriers. Security researcher Cooper Quintin from the Electronic Frontier Foundation raised concerns about what "refurbished" actually means for Verizon, and while Verizon promised an internal investigation, Quintin thinks they need outside scrutiny too. I'm reconsidering the structureβthe original has too many short paragraphs when I should have 1-3 longer ones. Let me consolidate this into a single, flowing narrative that captures the full story with my own perspective woven in, hitting all the key details: Tom Collery's 22-year Verizon tenure, the February network issues, the Z Flip7 demo unit with its MDM profile, the 10-day period of security updates, the factory reset that wiped everything including his grandmother's video, and Verizon's response with the $400 credit and their investigation.
</think>
Yo team, this is one of those tech horror stories that keeps me up at night because it's the kind of thing that could happen to literally anyone, and it's absolutely wild that Verizon sent a 22-year customer named Tom Collery a "refurbished" Samsung Galaxy Z Flip7 that was actually a store demo unit with a full Mobile Device Management (MDM) profile from BricTECH still attached! Collery called Verizon in February about network issues including dropped calls, and when he got his replacement device in San Francisco, he transferred all his data and went about his life β until about 10 days later, the phone started repeatedly updating security patches and restarting, and then it came back completely factory-reset with a message on screen saying "This device is managed. Property of Verizon has configured this device to be fully managed" and "Protected with BricTECH." The MDM system had been quietly waiting in the background, and when Verizon's fleet management policy kicked in, it sent a wipe instruction that obliterated Collery's data β and the backups to his Google and Samsung accounts weren't as up-to-date as he thought, so he lost everything: contacts, messages, videos, documents, pictures, all his patient healthcare information, and even the last video with his grandmother before she passed away! Cooper Quintin, a security researcher and senior technologist at the Electronic Frontier Foundation, told Ars this incident raises serious questions about what Verizon actually means when they say "refurbished" β he'd expect a refurbished phone to be completely factory reset and like-new essentially, and if Verizon failed to remove the MDM profile in this case, Quintin wonders how many refurbished phones still contain the original owner's data and whether this could happen again. Verizon did give Collery a $400 credit and another refurbished phone without the MDM profile, and let him keep the affected device as evidence (he wouldn't have been charged for the full phone value), but Collery said the executive team went from making a bunch of promises to shutting him down when he reached the highest level, and he's now focused on taking legal action and may switch carriers entirely. While Verizon told Ars they're conducting an internal investigation and are "actively and directly working with him to address it," Quintin said he doesn't generally trust corporations to police themselves and thinks this warrants an outside investigation as well. This is the kind of operational security failure that makes you realize how much control companies really have over your devices when they say they're just giving you a replacement β I'm now genuinely worried about what's on my phone and whether there's some invisible MDM profile lurking in there somewhere.
Source: https://arstechnica.com/tech-policy/2026/06/verizon-sent-man-a-refurbished-phone-with-mdm-then-deleted-his-data-remotely/
The key details I need to include: Tom Collery, a 22-year Verizon customer from San Francisco, called in February with network issues like dropped calls, and got sent a Samsung Galaxy Z Flip7 that turned out to be a store demo unit with an MDM profile from BricTECH. After about 10 days of security updates and restarts, the phone factory reset and his data vanished - contacts, messages, videos, documents, pictures, including patient info and the last video of his grandmother before she died. His Google and Samsung backups weren't current. Verizon gave him a $400 credit and let him keep the MDM device as evidence, but Collery felt shut down at the executive level and is considering legal action and switching carriers. Security researcher Cooper Quintin from the Electronic Frontier Foundation raised concerns about what "refurbished" actually means for Verizon, and while Verizon promised an internal investigation, Quintin thinks they need outside scrutiny too. I'm reconsidering the structureβthe original has too many short paragraphs when I should have 1-3 longer ones. Let me consolidate this into a single, flowing narrative that captures the full story with my own perspective woven in, hitting all the key details: Tom Collery's 22-year Verizon tenure, the February network issues, the Z Flip7 demo unit with its MDM profile, the 10-day period of security updates, the factory reset that wiped everything including his grandmother's video, and Verizon's response with the $400 credit and their investigation.
</think>
Yo team, this is one of those tech horror stories that keeps me up at night because it's the kind of thing that could happen to literally anyone, and it's absolutely wild that Verizon sent a 22-year customer named Tom Collery a "refurbished" Samsung Galaxy Z Flip7 that was actually a store demo unit with a full Mobile Device Management (MDM) profile from BricTECH still attached! Collery called Verizon in February about network issues including dropped calls, and when he got his replacement device in San Francisco, he transferred all his data and went about his life β until about 10 days later, the phone started repeatedly updating security patches and restarting, and then it came back completely factory-reset with a message on screen saying "This device is managed. Property of Verizon has configured this device to be fully managed" and "Protected with BricTECH." The MDM system had been quietly waiting in the background, and when Verizon's fleet management policy kicked in, it sent a wipe instruction that obliterated Collery's data β and the backups to his Google and Samsung accounts weren't as up-to-date as he thought, so he lost everything: contacts, messages, videos, documents, pictures, all his patient healthcare information, and even the last video with his grandmother before she passed away! Cooper Quintin, a security researcher and senior technologist at the Electronic Frontier Foundation, told Ars this incident raises serious questions about what Verizon actually means when they say "refurbished" β he'd expect a refurbished phone to be completely factory reset and like-new essentially, and if Verizon failed to remove the MDM profile in this case, Quintin wonders how many refurbished phones still contain the original owner's data and whether this could happen again. Verizon did give Collery a $400 credit and another refurbished phone without the MDM profile, and let him keep the affected device as evidence (he wouldn't have been charged for the full phone value), but Collery said the executive team went from making a bunch of promises to shutting him down when he reached the highest level, and he's now focused on taking legal action and may switch carriers entirely. While Verizon told Ars they're conducting an internal investigation and are "actively and directly working with him to address it," Quintin said he doesn't generally trust corporations to police themselves and thinks this warrants an outside investigation as well. This is the kind of operational security failure that makes you realize how much control companies really have over your devices when they say they're just giving you a replacement β I'm now genuinely worried about what's on my phone and whether there's some invisible MDM profile lurking in there somewhere.
Source: https://arstechnica.com/tech-policy/2026/06/verizon-sent-man-a-refurbished-phone-with-mdm-then-deleted-his-data-remotely/