Worth noting that having everything encrypted at rest wouldn't have helped in this case, because the attackers threatened the credentials out of the owner.

Still a good idea though, since it deters far more subtle attempts.

Yes, the $5 wrench in action. The only protection against that is to not have the information on the device or in any account associated with or used from the device.

Impractical for a normal person who wants to just live their life.

Unless maybe steganography. Information could be hiding in plain sight.

For instance I could have thousands of photograpphs I take wih my cell-phone everyday and have the info hidden in their pixels?