We are talking about object lock as supported by something like Amazon S3 or Backblaze B2. If you find a way to override them, you probably want to apply for a bug bounty, since that'd be a huge security issue.
It works really nicely, I can't even remove my own data with my own credentials. It's really a nice additional security layer.
> If you find a way to override them, you probably want to apply for a bug bounty, since that'd be a huge security issue.
Big security issue, and honest people will just apply for a bug bounty or otherwise responsible disclosure. Most honest people are not actively looking for such bugs though, so evil people are more likely to find them. An evil person is can make even more money from a successful ransom. (there are also honest people looking, but many wrote the code so they may be too close to the problem to see it)
It works really nicely, I can't even remove my own data with my own credentials. It's really a nice additional security layer.