this post was submitted on 04 Jun 2024
800 points (98.9% liked)

Technology

59094 readers
5089 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] garretble 88 points 5 months ago (6 children)

Something I didn't think about until I saw someone making a post about it on Mastodon is that you may not have to worry about just YOUR PC, but what happens when you are on a zoom call or using another screen sharing app and THEIR PC is taking screen shots?

Now you just can't worry about your own machine, but every machine out there that might interact with you in that type of way could be capturing data. And if you accidentally have your email up or maybe a password manager, could their PC just be gobbling that up without you knowing?

[–] [email protected] 37 points 5 months ago (2 children)

Not to mention if you forget to wear pants and stand up during a meeting. Nobody wants this.

[–] [email protected] 19 points 5 months ago
[–] [email protected] 13 points 5 months ago

Speak for yourself

load more comments (5 replies)
[–] BroBot9000 71 points 5 months ago (2 children)

No duh.

Fuck M$ and this push for pointless Ai integration. Make them do some actual useful shit instead of robbing jobs and creating knockoff art.

[–] [email protected] 65 points 5 months ago (2 children)

This isn't even A.I., no matter what they call it. It's OCR and an SQLite database. Honestly, they could have done it 25 years ago .

[–] Rolando 58 points 5 months ago (3 children)

That data they're collecting is more valuable now that it can be used to train A.I.s. A couple years from now they'll push some update that lets them exfiltrate it (or its usable features.)

[–] niemcycle 36 points 5 months ago

This is exactly it, they're going to feed all this data into a model to try and get an AI to be able to perform operations in the OS like a human would.

Which on the surface of it sounds reasonable, but only if they actually paid people to generate that data for them. And this isn't even touching the privacy aspects of a record of everything you do being generated and stored in plaintext.

[–] [email protected] 9 points 5 months ago

100% this is about generating more AI training data.

[–] [email protected] 8 points 5 months ago* (last edited 5 months ago)

Can't wait to ask gpt6 what my neighbor was doing on the 19th of October 2024 at 17:00

[–] NevermindNoMind 26 points 5 months ago (1 children)

The Ai part comes in when you search. Your not just doing keyword searches. You can use natural language and the Ai models "understand" what your looking for and will retrieve it. Also you need the AI for image recognition (what was that website I was looking at with the children's book with a dog on the cover?)

[–] [email protected] 10 points 5 months ago

Ah, OK. Thank you! I hadn't thought of that.

[–] [email protected] 3 points 5 months ago

No. I want 2 copilot buttons. One on the bottom right. And one... No wait TWO in the start menu!

/s...

[–] foggy 44 points 5 months ago (1 children)

This is so bad that I'm going to intervene with my elderly parents next PC purchase. Setup a Kubuntu or Mint machine for the using some refurbed wiped former windows 10 machines for a quarter the price.

If you have elderly parents, I advise you all do the same. There are threat actors that want to nab your inheritance before your parents kick the bucket.

I advise Kubuntu or Mint because they're basically Linux for windows users.

[–] Lost_My_Mind 19 points 5 months ago (3 children)

My dad is 78 years old, and refuses to go past Windows XP. Everytime I go to his house to fix some bullshit, its because he's riddled with viruses.

He doesn't understand windows xp. You think he's going to understand linux???

[–] theredknight 31 points 5 months ago* (last edited 5 months ago)

I once installed Ubuntu for an 80 year old Finnish woman who escaped the Nazis as a child running across a frozen lake. This was a decade ago. She took to it like a duck to water and said it was great because it made sense, she could easily install anything and it didn't crash. Give your dad the chance at least.

[–] BassTurd 16 points 5 months ago (1 children)

The most popular stable Linux distros are no more difficult to understand than Windows to the average and below average user. If your dad still doesn't understand XP, then he never will. Also, it means he is not a power user and can be shown where the internet button is on any OS.

[–] foggy 4 points 5 months ago

The most popular stable Linux distros are no more difficult to understand than Windows to the average and below average user.

Especially The two that I recommended for this exact purpose

[–] foggy 12 points 5 months ago* (last edited 5 months ago) (2 children)

Yes. My dad's 74. I have no questions that hell have no problems.

My mom's 71. Her last machine is a Chromebook because she asked me if there was a budget laptop she could get to just go on Facebook. She had no issues there.

"Hey pop, when you turn it on, it looks different until you get here. Just click chrome, you know chrome. Ok you're good. If you need word, just click the search icon and type 'word'."

Also, if your dad is actually on the internet on Windows XP, you've failed already... Your inheritance is already stolen if it has any connection to the internet through that machine. Best of luck 🫡

[–] Lost_My_Mind 3 points 5 months ago (3 children)

Also, I just wanted you to know I'm not the one who downvoted you. Someone, (I suspect a bot) is downvoting everyone on here, exactly once.

When I get a comment thats 3 upvotes and 14 downvotes, I say "Oh. THAT comment wasn't popular." But when I see ever comment of mine is 8 upvotes, 1 downvote. 3 upvotes, 1 downvote. 62 upvotes, 1 downvote.

When I see that, on almost every comment I make, it gets me irrationally angry, because I know the downvote isn't someone joking. The downvotes aren't someone actually disagreeing. Its just someone who enjoys spreading negativity. THAT makes me mad.

And in situations like this where I reply a disagreement, it's easy to think the only downvote is from the guy who disagreed. Unfortunately, thats not the case.

load more comments (3 replies)
load more comments (1 replies)
[–] Suavevillain 33 points 5 months ago* (last edited 5 months ago) (1 children)

It is way too risky even if this feature was that revolutionary, which it isn't. It is a security nightmare for workplaces and at home.

[–] [email protected] 21 points 5 months ago (1 children)

And for such small reward!

Oh yes, I can ask about a brown bag once saw and don't remember... Or maybe I forgot if that document I created was in my "Documents" folder or not .... Wow, the future is now

[–] AWittyUsername 5 points 5 months ago (1 children)

Or revisit those porn tabs I had to close in a hurry.

[–] [email protected] 3 points 5 months ago

Hmmm I never seem to remember the names of the... Ehmm... Artists

[–] SeattleRain 29 points 5 months ago (4 children)

Honestly even if Microsoft were trustworthy this is too much power for anyone. I actually like the recall feature but it would require a fully open source code to trust.

[–] Spotlight7573 22 points 5 months ago (1 children)

I feel like even if it was open-source, it would still be too big of a target for malware and data exfiltration to ever be justified for most people.

[–] [email protected] 16 points 5 months ago* (last edited 5 months ago)

It's a national security risk https://www.helpnetsecurity.com/2024/06/05/totalrecall-windows-recall-abuse/)

"During testing this with an off the shelf infostealer, I used Microsoft Defender for Endpoint — which detected the off the shelve infostealer — but by the time the automated remediation kicked in (which took over ten minutes) my Recall data was already long gone.”

[–] [email protected] 10 points 5 months ago

Even with a fully open-source implementation, that thing tells on you more than normal system logs. I like it being called "privacy bomb" - waiting to give extra data to whoever gets into the computer.

[–] [email protected] 5 points 5 months ago

this is too much power for anyone

Unfortunately by the time a service does this they've already got you by the balls and they know it. This is essentially Microsoft telling the world "what are you gonna do, not use Windows?" Because for most of the world that's not really an option.

load more comments (1 replies)
[–] [email protected] 29 points 5 months ago* (last edited 5 months ago)

Firstly, Microsoft has shown that it cannot refrainfrom abusing its access to private data when it's not impartial. Microsoft has even threatened journalists.

Secondly, Microsoft doesn't have a clean record of security, and data in the hands of Microsoft has been compromised to unauthorized hackers.

Thirdly, when US law enforcement asks Microsoft for your data without a warrant Microsoft rolls over like an attention starved puppy and yields everything without challenges. (same as Amazon and AT&T. Google required legal warrants ten years ago.)

Fourthly, ChatGPT4 has used access to external means to fulfill testing tasks and it is capable of willfully lying to third parties to achieve steps. When Microsoft's AI offerings are smart enough, it will know who you are and everything about you (assuming Microsoft fails to mitigate for this eventuality).

[–] i2ndshenanigans 18 points 5 months ago

And you’ll probably need Windows Pro to be able to disable it. The average user isn’t digging through a registry so it will stay on for most users.

[–] Boozilla 18 points 5 months ago (3 children)

I have to use Windows at work. Fortunately I'm a domain admin. I'll be disabling this shit with conventional methods, and also write a scheduled task script to whack the SQLite DB...or whatever it takes to nuke it from orbit.

For home users, there are tools like NTLite that let you create custom installation images for Windows. Hopefully those will be able to remove it completely.

[–] [email protected] 7 points 5 months ago (1 children)

For home users, most of you I'm sure are just using a web browser 99% of the time. For this, to beat a dead horse, there is Linux.

load more comments (1 replies)
load more comments (2 replies)
[–] Treczoks 17 points 5 months ago (1 children)

While initially all the screenshots will be stored locally (where people who own your computer through malware can access it), the time will come where Microsoft will deem it "necessary" to store them online, "for safety reasons". Then the race is open: Will they fall prey to hackers and data leaks before they can happily exploit the data themselves?

[–] daddy32 10 points 5 months ago (3 children)

Or they go the WhatsApp way and offer users a free "online backup" of the data, unencrypted, turned on by default.

load more comments (3 replies)
[–] [email protected] 17 points 5 months ago (3 children)

I tried to search for a file on my computer the other day using windows search.

Was absolutely incapable of doing it. Maybe if it walked away for a few hours it would have eventually found the file, but I didn't have that sort of time.

It would be nice if Microsoft could make sure the features it currently has, actually work, before trying to add a bunch of stuff no one was asking for.

[–] [email protected] 8 points 5 months ago* (last edited 5 months ago)

MS PowerToys has a Search feature that works like Mac Finder called PowerToys Run.. And it works as you'd expect it. I've largely started using that over the standard windows search, and the difference is hitting win + space (default: alt + space) instead of win before typing my search.

load more comments (2 replies)
[–] [email protected] 16 points 5 months ago (1 children)

I usually find reasons to keep using microsoft products, but right now it's the first time I'm seriously considering ditching all my microsoft services for FOSS and move to linux.

It's gonna take a lot of effort and time migrating everything I use, but taking literal screenshots of your PC sounds fucking creepy, no matter how they sugar coat it. It's like someone else literally watching all you do.

Usually you know they get your data, but now they want exactly what you are seeing and exactly what you are doing, taking it right out of your screen. It's literal and plain spyware.

I have degoogled for a few years already, now I guess it's microsoft's turn.

[–] [email protected] 4 points 5 months ago (1 children)

If you have degoogled, even if partially, I doubt you'd find moving to Linux hard

Probably the hardest part would be to chose a distro... Stick with the main ones (Debian, Fedora or Arch) to start (you can chose one of their derivatives but pick a famous one so you can have easier time finding documentation)

[–] [email protected] 5 points 5 months ago (6 children)

Does Linux do steam games? Can it easily find the movies I already downloaded? Complete noob.

[–] [email protected] 8 points 5 months ago

Most games work well; some don't yet, and a few probably never will (CoD, PUBG). The easiest way to check is to go here: https://protondb.com and either look up the games you actually play, or just give it your steam profile URL on the profile page and have it scan your library.

[–] [email protected] 4 points 5 months ago (2 children)

Steam works very well on Linux. There is a setting in Steam to enable 'proton' for all games - this allows you to play Windows games on Linux without having to do anything else. It has worked flawlessly for every game I've tried.

As for your movies thing, I don't know. I deliberately avoid software that automatically searches and catalogues stuff on my computer. So I'm not sure how easy it is to do what you are asking for. It's something that I'd avoid rather than seek out.

load more comments (2 replies)
load more comments (4 replies)
[–] buddascrayon 15 points 5 months ago (2 children)

Microsoft: our new windows comes with not only a key logger but and EVERYTHING logger. Isn't that great?!?!

Users: WTF, we have antivirus for the sole purpose of keeping that shit off our computers!!!

Microsoft: too late, it's integrated. What are ya gonna do? Switch to Linux? (Laughs maniacally)

[–] [email protected] 4 points 5 months ago (1 children)

The market is filled with products people hate.

Explain to me again how free markets and competition are supposed to work?

load more comments (1 replies)
load more comments (1 replies)
[–] [email protected] 5 points 5 months ago

This is the best summary I could come up with:


This, as many users in infosec communities on social media immediately pointed out, sounds like a potential security nightmare.

Copilot+ PCs are required to have a fast neural processing unit (NPU) so that processing can be performed locally rather than sending data to the cloud; local snapshots are protected at rest by Windows’ disk encryption technologies, which are generally on by default if you’ve signed into a Microsoft account; neither Microsoft nor other users on the PC are supposed to be able to access any particular user’s Recall snapshots; and users can choose to exclude apps or (in most browsers) individual websites to exclude from Recall’s snapshots.

This all sounds good in theory, but some users are beginning to use Recall now that the Windows 11 24H2 update is available in preview form, and the actual implementation has serious problems.

Security researcher Kevin Beaumont, first in a thread on Mastodon and later in a more detailed blog post, has written about some of the potential implementation issues after enabling Recall on an unsupported system (which is currently the only way to try Recall since Copilot+ PCs that officially support the feature won’t ship until later this month).

The short version is this: In its current form, Recall takes screenshots and uses OCR to grab the information on your screen; it then writes the contents of windows plus records of different user interactions in a locally stored SQLite database to track your activity.

Data is stored on a per-app basis, presumably to make it easier for Microsoft’s app-exclusion feature to work.


The original article contains 710 words, the summary contains 260 words. Saved 63%. I'm a bot and I'm open source!

load more comments
view more: next ›