557
submitted 6 months ago by lemmee_in@lemm.ee to c/technology@lemmy.world

Microsoft's Windows Recall feature is attracting controversy before even venturing out of preview.

Microsoft said in its FAQs that its snapshotting feature will vacuum up sensitive information: "Recall does not perform content moderation. It will not hide information such as passwords or financial account numbers. That data may be in snapshots stored on your device, especially when sites do not follow standard internet protocols like cloaking password entry."

Mozilla's Chief Product Officer Steve Teixeira told The Register: "Mozilla is concerned about Windows Recall. From a browser perspective, some data should be saved, and some shouldn't.

Jake Moore, Global Cybersecurity Advisor at ESET, noted that while the feature is not on by default, its use "opens up another avenue for criminals to attack."

Moore warned that "users should be mindful of allowing any content to be analysed by AI algorithms for a better experience."

Cybersecurity expert Kevin Beaumont was scathing in his assessment of the technology, writing: "In essence, a keylogger is being baked into Windows as a feature."

AI expert Gary Marcus was blunter: "F^ck that. I don't want my computer to spy on everything I ever do."

top 50 comments
sorted by: hot top controversial new old
[-] zcd@lemmy.ca 129 points 6 months ago
[-] FlashMobOfOne@lemmy.world 10 points 6 months ago

Yup, I'm setting up a dual boot when my thumb-drive arrives.

Actually really excited to get back to computing the way it was in 2010. :)

[-] Lost_My_Mind@lemmy.world 4 points 6 months ago

2010 sounds so fantastical, and such a far away time of mystery in the future. We'll have flying cars, and robot monkey maids, and brain chips that can drive cars, and.......it was 14 years ago??? It's currently 2024? Well that sounds like a depressing year!

load more comments (1 replies)
load more comments (2 replies)
load more comments (1 replies)
[-] rem26_art@fedia.io 66 points 6 months ago

So currently only Edge users can filter what gets picked up by Recall by site, and Chromium users get private browsing mode blocked out of the box? In the article, the Mozilla rep they interviewed says that Microsoft didn't reach out to them or hasn't made available any documentation on how to get non chromium browsers to pick what gets included in Recall.

Even if this is something thats off by default and is encrypted if you do turn it on, boy would I never want to turn it on.

[-] makyo@lemmy.world 31 points 6 months ago

Me either, and at least in my experience with Windows these things have a way of 'accidentally' turning themselves on after a random update or something

[-] Crismus@lemmy.world 56 points 6 months ago

As much as I want "Jarvis" OS system, I really don't want the version made by Microsoft, Google, or, Apple.

I want to be able to talk with my AI PC, but I want secure AI that's just for me and won't steal all my data for any Corporations to browse.

[-] prole@sh.itjust.works 5 points 6 months ago

I think the would becomes a lonely place if everyone started only talking with their AI friend. And you know that's what would happen. Humans would isolate from each other ever more.

[-] rayyy@lemmy.world 11 points 6 months ago

if everyone started only talking with their AI friend.

This would be super great for the ruling class behind the AI curtain. Your AI pal would compliment and flatter you while guiding you down the corporate cattle chute.

load more comments (2 replies)
load more comments (6 replies)
[-] red_pigeon@lemm.ee 43 points 6 months ago* (last edited 6 months ago)

What's the point of this feature ? If it were not evil, what problem would it solve ? How often do you go to your PC and think "what was that thing I saw but never thought to create a bookmark or save the link/image".

Even if people use it, it would be for something they missed because they thought it was unimportant or didn't interest them, which is a very rare use case.

And still it is a highlight feature !

I wonder if it is lack of ideas or lack of commitment to create a good idea , given a technology, when these kinds of useless features are launched.

[-] NutWrench@lemmy.world 24 points 6 months ago

I can't think of a single reason why I would need detailed snapshots of everything I did with my own computer.

But I can think of plenty of reasons why corporations, advertisers and governments would want that.

[-] JeffreyOrange@lemmy.world 8 points 6 months ago

I can't remember the last time Microsoft Imolemented a good idea into windows other than small UI changes.

load more comments (1 replies)
[-] sugar_in_your_tea@sh.itjust.works 6 points 6 months ago

Use case: I remember doing something yesterday about this, but I can't find the email/document/etc.

But I honestly don't think the value outweighs the cost, so if I still used Windows, this would absolutely be something that drives me away.

load more comments (2 replies)
[-] NutWrench@lemmy.world 41 points 6 months ago

I think the problem with big companies like Microsoft, EA, Ubisoft, Bethesda, etc is that once all the smart & creative people have gone, all you have left are the "line must always go up" business idiots, who have no idea what their company does or how to fix it.

CoPilot is exactly the kind of End-stage, "let's screw our customers to death" idea the CEOs come up with right before their company implodes.

The reason I know that's true is because when this stupid idea for CoPilot came up, there were no smart people who immediately said, "do you have any idea what a terrible f*cking plan this is?"

[-] Wirlocke@lemmy.blahaj.zone 8 points 6 months ago* (last edited 6 months ago)

Ironically the business people are terrible at business. I genuinely think LLMs (despite their economic evils) are stunning pieces of technology.

But they are money sinks and the only plans for profit are subscriptions or advertisements. It's Social Media/Streaming/Tech Startups panicked hype investing all over again. Subscriptions and advertising just simply do not pay the bills for huge server and gpu farms.

But sustainability isn't what they want is it? They want the stock to go up to then cash out when it's about to fall. sigh

[-] Gestrid@lemmy.ca 8 points 6 months ago

I'm sure some did, but, unfortunately, those people aren't the ones making the business decisions.

The "line must go up" people are in charge because "line must go up" investors are saying the "line must go up".

load more comments (2 replies)
[-] jj4211@lemmy.world 30 points 6 months ago

Total Recall? Get your ass to Linux!

[-] Alph4d0g@discuss.tchncs.de 8 points 6 months ago

Honestly if you do truly value having control over your privacy take this advice to heart. There are so many good Linux options now that are even easier than Windows to install. All it takes is a few clicks. You can even choose which UI you prefer in many cases. All those previous barriers to entry no longer exist.

[-] Lost_My_Mind@lemmy.world 5 points 6 months ago

I've tried to get into linux 4 different times now. Over the coarst of 15 years.

I have no idea what I'm doing.

load more comments (12 replies)
load more comments (3 replies)
[-] FlyingSquid@lemmy.world 29 points 6 months ago

But the C-suite folks think it's a great new way to spy in their employees, so I'm guessing it's here to stay.

[-] TurtleJoe@lemmy.world 6 points 6 months ago

I bet their lawyers might not think it's a great idea.

load more comments (4 replies)
[-] nickwitha_k@lemmy.sdf.org 29 points 6 months ago

Seems like all hospitals and medical providers would need to avoid the OS in order to remain in compliance with HIPAA.

[-] AtariDump@lemmy.world 5 points 6 months ago

I give it two weeks, tops.

[-] Suavevillain@lemmy.world 19 points 6 months ago

This is going to be terrible for work place security.

[-] Lumisal@lemmy.world 15 points 6 months ago

No one here mentioning this will be a gold mine for Malware makers and hackers.

load more comments (1 replies)
[-] EmperorHenry@discuss.tchncs.de 13 points 6 months ago

literally every cybersecurity expert is saying this would be a bad idea that could be used maliciously by anyone. I really hope the executives listen to them.

yeah, sure, it's supposedly encrypted and supposedly stored locally exclusively and supposedly not turned on by default, but even if that does turn out to be true, scammers can use it with remote desktop to snoop, anyone who plants a RAT on your system could look through that shit too.

[-] anavrinman@lemmynsfw.com 15 points 6 months ago

"I really hope the executives listen to them."

Oh man. Needed a good laugh tonight. Thanks champ.

[-] Wirlocke@lemmy.blahaj.zone 7 points 6 months ago

Microsoft's bread and butter has been selling and servicing to businesses.

So with that in mind, the hell are they thinking? Windows 10 end of life guarantees that businesses specifically will have to switch. Then the next option in line is one that will by default vacuum up all your proprietary information to feed into an AI, effectively "copyright laundering" it?.

Even if there's ways to deactivate the feature, the non-tech savvy managers will just go off of the headlines and the tech savvy ones will recognize the security risk. And government/healthcare computer might just fork Linux into a non-open source version.

Ironically it feels like they're focusing too much on consumers (on extorting them) and shooting themselves in the foot for their business clientele.

[-] EmperorHenry@discuss.tchncs.de 5 points 6 months ago

Ironically it feels like they’re focusing too much on consumers (on extorting them) and shooting themselves in the foot for their business clientele.

It's like they saw all the shittiest things about apple products and said "game on motherfuckers!"

imagine how many people are going to get doxxed by this feature.

[-] autotldr@lemmings.world 7 points 6 months ago

This is the best summary I could come up with:


The user can then scroll through the archive of snapshots to find what were doing some time back, or query an AI system to recall past screenshots by text.

The Windows 11 feature is supposed to eventually expand to allow users to pull up anything that happened recently on their Copilot+ PC and interact with or use it again, as the system logs all app activity, communications, and so on, as well as by-the-second screenshots, to local storage for search and retrieval.

The IT giant also says that for the relatively small number of users running its Edge browser – with a market share of just under 13 percent, according to Statcounter – InPrivate sessions won't be snapped, nor will DRM content.

Other Chromium-based browsers can filter out private browsing activity but lose the ability to block sensitive websites (such as financial sites) from Recall.

Microsoft did not engage our cooperation on Recall, but we would have loved for that to be the case, which would have enabled us to partner on giving users true agency over their privacy, regardless of the browser they choose."

Industry must consider data protection from the outset and rigorously assess and mitigate risks to people's rights and freedoms before bringing products to market.


The original article contains 1,057 words, the summary contains 209 words. Saved 80%. I'm a bot and I'm open source!

[-] Blackmist@feddit.uk 5 points 6 months ago

Even if we believe them and all the data stays local to your machine, what's to stop your average bit of malware accessing it?

So now not only is any data compromised going forward, but all your data going back as well.

load more comments
view more: next ›
this post was submitted on 28 May 2024
557 points (98.4% liked)

Technology

59689 readers
1589 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS