Kevin BeaumontMay 21, 2024

For those who aren’t aware, Microsoft have decided to bake essentially an infostealer into base Windows OS and enable by default.

From the Microsoft FAQ: “Note that Recall does not perform content moderation. It will not hide information such as passwords or financial account numbers."

Info is stored locally - but rather than something like Redline stealing your local browser password vault, now they can just steal the last 3 months of everything you’ve typed and viewed in one database.

Show threadKevin BeaumontMay 21, 2024

I've written up my thoughts on the Copilot Recall feature in Microsoft Copilot+ PCs

I think it will enable fraud and endanger users, and is not the sign of a company who are committed to security first.

https://doublepulsar.com/how-the-new-microsoft-recall-feature-fundamentally-undermines-windows-security-aa072829f218

How the new Microsoft Recall feature fundamentally undermines Windows security

Yesterday, Microsoft CEO Satya Nadella sat down with the media to introduce a new feature called Recall, as part of their Copilot+ PCs. It takes screenshots of what you’re doing on constantly, by…

DoublePulsar
Show threadKevin BeaumontMay 22, 2024
The UK’s ICO have opened an investigation into Copilot+ Recall. https://www.bbc.co.uk/news/articles/cpwwqp6nx14o
Microsoft Copilot+ Recall feature 'privacy nightmare'

The ICO wants to know the safeguards around Recall, which can take screengrabs of your screen every few seconds.

BBC News
Show threadKevin BeaumontMay 22, 2024

Copilot+ Recall has been enabled by default globally in Microsoft Intune managed users, for businesses.

You need to enable DisableAIDataAnalysis to switch it off. https://learn.microsoft.com/en-us/windows/client-management/manage-recall

Manage Recall for Windows clients

Learn how to manage Recall for commercial environments and about Recall features.

Show threadocdtrekkie
@GossiTheDog Won't be deploying any "AI PCs" until we have policy to disable it, but... also I think we can just not buy AI PCs.
May 22, 2024 at 12:05pmWeb
Show threadCaptain of the SS El FaroMay 24, 2024
@ocdtrekkie @GossiTheDog at least for about five more minutes
Show threadocdtrekkieMay 24, 2024
@bangskij @GossiTheDog Pricing will likely dictate this for the entire lifetime of this fad. Sort of like when all Windows 8 PCs were supposed to do touch and basically only a handful of touchscreens were sold. The product lines announced by OEMs tell a lot. Like for Dell Latitude they are adding a number to the models to indicate the AI variant like they add a number to indicate their AMD variants, graphics card added variants, and ARM-based variants.
Show threadocdtrekkieMay 24, 2024
@bangskij @GossiTheDog Bear in mind that even as most businesses will buy the standard Intel non-AI model as a matter of annual practice, consumers still just buy the cheapest barebones thing sold at Costco... AI PCs will have zero penetration there because people will still pick the mechanical hard drive if it saves them ten dollars on the purchase price.