TPMs can be useful for device security, and there are ways in Linux to use it (under your control) to its full extent for protected boot and disk encryption.
Look at tools like Clevis for LUKS, and I believe systemd has support for integration with TPM. Ubuntu is experimenting with TPM-backed Full Disk Encryption on Desktop using the work they put into snapd and Ubuntu Core.
It's an insane (and mostly annoying) rabbit hole if you intend to follow it, you quickly learn how much of a wild west UEFI is between vendors.
TPMs can be useful for device security, and there are ways in Linux to use it (under your control) to its full extent for protected boot and disk encryption.
Look at tools like Clevis for LUKS, and I believe systemd has support for integration with TPM. Ubuntu is experimenting with TPM-backed Full Disk Encryption on Desktop using the work they put into snapd and Ubuntu Core.
It's an insane (and mostly annoying) rabbit hole if you intend to follow it, you quickly learn how much of a wild west UEFI is between vendors.
I'm not an expert. What I understood is that they do have legitimate uses. The problem is that they also can be used to expert power over the user.