this post was submitted on 04 Jun 2024
664 points (98.7% liked)

Technology

59429 readers
3333 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

this rootless Python script rips Windows Recall's screenshots and SQLite database of OCRed text and allows you to search them.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 2 points 5 months ago (2 children)

Is this thing even a thing? I see lots of discussion about it, but not real proof it was enabled across the board on all win 11 computers.

[–] [email protected] 3 points 5 months ago

Yes. It's very very real and is just a typical Microsoft bullshit move.

https://x.com/GossiTheDog/status/1798812975735996772

[–] [email protected] 3 points 5 months ago

it's on "Copilot+" PCs (i.e. ARM-based with an NPU)

[–] [email protected] 6 points 5 months ago

That was quick.

[–] [email protected] 9 points 5 months ago (1 children)

good luck to people typing their passwords in visible mode

[–] [email protected] 4 points 5 months ago

Windows, pretending it can't read what you're typing in because you didn't click "show password":

[–] [email protected] 15 points 5 months ago

Windows be like

[–] [email protected] 26 points 5 months ago (2 children)

Imagine if they zero day this.

[–] [email protected] 14 points 5 months ago

Someone has already demonstrated using an off-the-shelf infostealer to steal the Recall database from a test computer. It won't take any special skills or technology for this to be a problem.

[–] [email protected] 24 points 5 months ago* (last edited 5 months ago)

Lol "if". This thing is going to be a massive target.

[–] [email protected] 46 points 5 months ago (1 children)

How could the db be all plaintext unencrypted?!? I mean this is amateur hour at display here

[–] [email protected] 37 points 5 months ago (1 children)

How are they supposed to feed it into their LLMs later if it's encrypted??

[–] [email protected] 16 points 5 months ago* (last edited 5 months ago) (1 children)

Decrypt it server side like all other encrypted data

If we believe it doesn’t leave the machine then the ai can have a decryption layer

[–] [email protected] 9 points 5 months ago (2 children)

That takes up precious cpu cycles

[–] [email protected] 7 points 5 months ago (1 children)

If only Microsoft required a second prossesor like some sort of module just for encrypting and decrypting things without using additional CPU cycles... What if we also stored the encryption keys on that module so we could trust that platform...

[–] [email protected] 2 points 5 months ago* (last edited 5 months ago) (1 children)

Honestly I'm pissed that even if I switch OS I'm probably going to be paying more for CPUs from now on to account for microsofts blatant abuse of a monopoly.

[–] [email protected] 1 points 5 months ago* (last edited 5 months ago) (1 children)

How old of a system are you running because TPM have been included on CPUs since at least 2009. Microsoft requiring something already built into modern CPU isn't the reason why CPUs cost more now.

[–] [email protected] 12 points 5 months ago

So does the rest of it

[–] [email protected] 33 points 5 months ago

So . . . MS wants to force Recall on us.. Assures us that it's "secure." And it can't be bothered to even lightly encrypt the data? This is just plain incompetent.

Also, MS want to bundle CoPilot with Office 365, a subscription service. You will be paying for the privilege of spying on yourself.

load more comments
view more: next ›