Kevin BeaumontMay 21, 2024

For those who aren’t aware, Microsoft have decided to bake essentially an infostealer into base Windows OS and enable by default.

From the Microsoft FAQ: “Note that Recall does not perform content moderation. It will not hide information such as passwords or financial account numbers."

Info is stored locally - but rather than something like Redline stealing your local browser password vault, now they can just steal the last 3 months of everything you’ve typed and viewed in one database.

Show threadKevin BeaumontMay 21, 2024

I've written up my thoughts on the Copilot Recall feature in Microsoft Copilot+ PCs

I think it will enable fraud and endanger users, and is not the sign of a company who are committed to security first.

https://doublepulsar.com/how-the-new-microsoft-recall-feature-fundamentally-undermines-windows-security-aa072829f218

How the new Microsoft Recall feature fundamentally undermines Windows security

Yesterday, Microsoft CEO Satya Nadella sat down with the media to introduce a new feature called Recall, as part of their Copilot+ PCs. It takes screenshots of what you’re doing on constantly, by…

DoublePulsar
Show threadKevin BeaumontMay 22, 2024
The UK’s ICO have opened an investigation into Copilot+ Recall. https://www.bbc.co.uk/news/articles/cpwwqp6nx14o
Microsoft Copilot+ Recall feature 'privacy nightmare'

The ICO wants to know the safeguards around Recall, which can take screengrabs of your screen every few seconds.

BBC News
Show threadKevin BeaumontMay 22, 2024

Copilot+ Recall has been enabled by default globally in Microsoft Intune managed users, for businesses.

You need to enable DisableAIDataAnalysis to switch it off. https://learn.microsoft.com/en-us/windows/client-management/manage-recall

Manage Recall for Windows clients

Learn how to manage Recall for commercial environments and about Recall features.

Show threadKevin BeaumontMay 22, 2024
Here’s Copilot+ Recall search in action, showing instant text based search finding a WhatsApp chat and a PDF from 6 months ago being viewed on screen.
Show threadKevin BeaumontMay 22, 2024

Two quick updates -

A) if you disallow recording of a website in Control Panel or GPO, in Chrome it is still recorded - disallow recording only works in Edge browser

B) Firefox and Tor Browser is recorded always, including in private mode - the exception is Hollywood DRM’d videos

Show threadKevin BeaumontMay 23, 2024

I got ahold of the Copilot+ software.

Recall uses a bunch of services themed CAP - Core AI Platform. Enabled by default.

It spits constant screenshots (the product brands then “snapshots”, but they’re hooked screenshots) into the current user’s AppData as part of image storage.

The NPU processes them and extracts text, into a database file.

The database is SQLite, and you can access it as the user including programmatically. It 100% does not need physical access and can be stolen.

Show threadKevin Beaumont

And if you didn’t believe me.. found this on TikTok.

There’s an MSFT employee in the background saying “I don’t know if the team is going to be very happy…”

They should probably be transparent about it, rather than telling BBC News you’d need to be physically at the PC to hack it (not true). Just a thought.

May 24, 2024 at 12:29amWeb
Show threadKevin BeaumontMay 24, 2024
I ponder if Microsoft's engineers are following the SQLite code of ethics, since they're using it in Windows OS with Copilot+ Recall? :D https://sqlite.org/codeofethics.html
Code Of Ethics

Show threadKevin BeaumontMay 24, 2024

So the code underpinning Copilot+ Recall includes a whole bunch of Azure AI backend code, which has ended up in the Windows OS. It also has a ton of API hooks for user activity monitoring.

Apps themselves can also search and make themselves more searchable.

It opens a lot of attack surface.

The semantic search element is fun.

They really went all in with this and it will have profound negative implications for the safety of people who use Microsoft Windows.

Show threadKevin BeaumontMay 26, 2024

If you want to know where tech companies are with AI safety, know Microsoft Recall won’t record screenshots of DRM’d movies..

..but will record screenshots of your financial records and WhatsApp messages, as corporate interests were prioritised over user safety.

And it’s enabled by default.

Show threadChrisMay 26, 2024
@GossiTheDog It'll be interesting to see what this OOBE actually is. They seem to imply you could turn it off, but given how OneDrive (as example) seems to force folder sync how clear will it be turning this off is possible? https://support.microsoft.com/en-us/windows/privacy-and-control-over-your-recall-experience-d404f672-7647-41e5-886c-a3c59680af15
Privacy and control over your Recall experience - Microsoft Support

Show threadPlay Ball and Fight FascistsMay 26, 2024

@GossiTheDog

I started my work life in accounting and computers have made so many aspects of that work so much easier.

But I am at the point where I think it’s time to burn all this shit to the ground and get out the paper ledgers and 10 keys again.

I swear, every other day it’s another shit-tastic addition to some heavily used piece of software that no one asked for, is poorly made, and creates massive security holes.

Show threadBibbleCoMay 26, 2024

@cafechatnoir I'm in my mid-50s, and believe me, that reflex is getting oooold. I'm sure I remember consumer affairs programmes running stories about computerised billing system SNAFUs in the 1970s.

@GossiTheDog

Show threadsadmac356May 27, 2024
@cafechatnoir @GossiTheDog honestly at this point it's either that or lotus 1-2-3
Show threadJason Haar May 26, 2024
@GossiTheDog phah! Not even original - Rick and Morty did that seasons ago! https://youtube.com/shorts/aGBKYRBwG7E?si=jMKTJCb_2x9t7UK6
Bevor Sie zu YouTube weitergehen

Show threadFellowsMay 26, 2024
@GossiTheDog sounds like a massive shit show waiting to happen. I better stock up on🍿 !
Show threadClayfootMay 26, 2024
@GossiTheDog in 2004, Tony Soprano orders OnStar removed from every new car. In 2024, Tony's successor orders Recall didabled on every new computer.
Show threadBibbleCoMay 26, 2024
@GossiTheDog the GDPR test case will be interesting...
Show thread8tpercentMay 26, 2024
@BibbleCo @GossiTheDog Thank you for submitting your complaint to GDPR. Unfortunately, scanning everything was allowed in the T&Cs... which were on display in the bottom of a locked filing cabinet stuck in a disused lavatory with a sign on the door saying ‘Beware of the Leopard.
Show threadBibbleCoMay 27, 2024

@8tpercent @GossiTheDog

"The lights had probably gone."
"So had the stairs!"

Small print doesn't really cut it, though, it needs to be informed consent. The victim, sorry 'data subject' needs to *genuinely* know & understand what they're agreeing to, and IIRC the directive rules out hiding significant detail in "paragraph 3, subsection 42" of agreements no-one ever reads.

Show threadHeals May 27, 2024

@BibbleCo @8tpercent @GossiTheDog

But lets be honest - all of us living under the GDPR protections know how "informed consent" is handled by big companies.

[ ] by using this feature I accept the additions to the <privacy policy>

With the policy linked and no-one ever going to actually read all 300 pages of it or if they do understand the content.

Show threadBibbleCoMay 27, 2024
@heals @8tpercent @GossiTheDog Hmmm yeah that's a fair point! Under-resourced UK ICO have been slack at enforcement. What we need is an eccentric billionnaire who enjoys litigation as a hobby...
Show threadP StewartMay 27, 2024
@BibbleCo @GossiTheDog I figure we're just heading for versions of Windows that are compliant with European laws and maximized-datamining versions for everyone else.
Show threadCaptain of the SS El FaroMay 26, 2024
@GossiTheDog in my country, I access health records on the web, send and receive messages to doctors about health things on the web, basically every last government service is a website.
Show threadLukas BrauschMay 24, 2024
@GossiTheDog At least, it will have profound positive implications for the safety of people who decide to switch to #Linux based systems. 😉 Jokes aside, thank you very much for your work and educating the general public. 👍
Show threadAlan Miller  🇺🇦May 24, 2024
@LukasBrausch @GossiTheDog one good side of the shift to so much cloud+browser based SaaS is that none of of it really cares if you're on Windows anymore. No more "IE and ActiveX required"
Show threadSeattleSwiftieMay 24, 2024
@GossiTheDog what?! You're telling me that Microsoft is being the truth on what "On your local PC" means? That they'll just hand your data off to other partners and apps. Shocked. Absolutely shocked.
Show threadkauerMay 25, 2024

@seattleswiftie @GossiTheDog "Shocked. Shocked I am, that gambling should be taking place on these premises!"

"Your winnings, Captain."

"Oh, thank you."

Show threadMichael WeissMay 24, 2024
@GossiTheDog And how many other devices are there that aren't what we think of as traditional computers, but run Windows? Plenty of ATMs, POS, every medical office I've been in... None of these should have such a feature, ever.
Show threadMagnesiumMay 24, 2024
@GossiTheDog wait... What? Can you please explain further or point me to a reference?
Show threadInteriorceMay 25, 2024
@GossiTheDog luckily for now it works only on a specific laptop that I would never buy
Show threadMattMay 25, 2024
@GossiTheDog Does anybody know of any malware analysis reports, of #recall , that may be available?
Show threadlupus_blackfurMay 25, 2024

@GossiTheDog

Consider...

This is a "feature" M$ held worthy of letting us know about cause they expected we'd want it...

Imagine what's in Windoze they haven't let us know about to avoid expected reaction...

🤔🤔🤔

Show threadsnowyfoxMay 24, 2024
Screenshot of most of #3 'The Rule', illustrating the long list of text
Show threadGraham Sutherland / PolynomialMay 24, 2024
@GossiTheDog what the fuck lol
Show threadLuka RubinjoniMay 24, 2024
@gsuberland @GossiTheDog https://sqlite.org/codeofethics.html
Code Of Ethics

Show threadGraham Sutherland / PolynomialMay 24, 2024
@rubinjoni @GossiTheDog uh yes, it's linked in the post I replied to?
Show threadLuka RubinjoniMay 24, 2024
@gsuberland @GossiTheDog sorry, I didn't see the link. So I checked manually, because I can't tell if anything is a shitpost these days...
Show threadIgnas KielaJun 3, 2024
@gsuberland @GossiTheDog sqlite developers are devout christians

https://www.theregister.com/2018/10/22/sqlite_code_of_conduct/
SQLite creator crucified after code of conduct warns devs to love God, and not kill, commit adultery, steal, curse...

Database creator explains Christian-based rules to El Reg

The Register
Show threadQuadrupleMay 24, 2024
@GossiTheDog Right above The Rule, it actually say that "No one is required to follow The Rule, to know The Rule, or even to think that The Rule is a good idea."
Show threadKyle GreenMay 24, 2024
@GossiTheDog I haven’t looked yet but is “there is nothing that is hidden that will not be revealed” there too?
Show threadBobHyMay 24, 2024
@GossiTheDog Apparently, Chrome search history was/still is stored in local user profile , also in SQLlite? https://www.reddit.com/r/chrome/comments/lqh0mg/comment/gohupz1/?utm_source=share&utm_medium=mweb3x&utm_name=mweb3xcss&utm_term=1&utm_content=share_button
Show threadDarkCybermanMay 24, 2024
@GossiTheDog https://youtu.be/57KRIb-YDWY?si=5lKHumIXuKPamXxw
Descendents - All-O-Gistics

YouTube
Show threadDHeadshot's AltMay 24, 2024
@GossiTheDog I thought the rules only applied to *developers of* SQLite, not those using/developing *with* it?
Show threadNischayMay 27, 2024
@ddlyh @GossiTheDog Yeah, that's what the first few lines say.
Show threadDemiurgMay 24, 2024
@GossiTheDog Ah damn, I also already failed at rule 1 😄
Show threadwaffles May 24, 2024
@GossiTheDog they say it explicitly only applies to their volunteers, so if you use ship SQLite you're not bound by their code of ethics
Show threadMarcus AdamsMay 24, 2024
@GossiTheDog I forget his name but the guy talking is actually here on Mastodon. He at least was, and I think still is an employee at Microsoft.
Show threadGavin Jones May 24, 2024
@gerowen @GossiTheDog he's Scott Hanselman, I won't like to his profile but yes he's on Mastodon I belive.
Show threadThibault D.May 24, 2024
@Powareverb @gerowen @GossiTheDog @shanselman that's fine he's the one doing transparency here and I would love to read his thoughts about the privacy concerns of Recall.
Show threadMatti JärvinenMay 24, 2024
@ThibaultDu @Powareverb @gerowen @GossiTheDog @shanselman IMO it seems that this is the Ian Malcolm moment from Jurassic Park.
Show threadScott Hanselman 👸🏽🐝🌮May 24, 2024
@ThibaultDu @Powareverb @gerowen @GossiTheDog I don’t work on the project but I find the NPU tech and the open SDKs behind it (and onyx runtime) interesting. My opinion is it should be not just opt-in but something you download explicitly and install if you want it. Similar to RescueTime and TimeSnapper and AugmenD and other apps that have done this stuff for years (using OCR). This should be as secure as your browser history, encrypted at rest, non roaming, etc.
Show threadScott Hanselman 👸🏽🐝🌮May 24, 2024
My opinion as a technologist with all things like this is always should be optional, auditable, local, and transparent
Show threadThibault D.May 24, 2024
@shanselman Thank you for answering truthfully Scott! 🙏
Show threadScott Hanselman 👸🏽🐝🌮May 24, 2024
@ThibaultDu We have nothing if we don’t have integrity
Show threadGavin Jones May 24, 2024
@ThibaultDu @shanselman indeed, thanks for chiming in Scott, your opinion was good to hear. I get your interest from a technical PoV, but this stuff is so many levels of concerning for myself and others, as you no doubt can see from the thread. Very much expect the product team would be aware of this, so it begs questions about how far up the chain are these discussions being ignored. Will be watching the space.
Show threadMarcus AdamsMay 24, 2024
@shanselman @ThibaultDu @Powareverb @GossiTheDog That's what I'm hoping; that it'll be opt in. I could see it being very useful for some people, as long as the data cache is properly protected even while the user is logged in.
Show threadTane Piper ⁂Jun 2, 2024
@shanselman @ThibaultDu @Powareverb @gerowen @GossiTheDog it's going to be interesting how IT departments handle this. FWIW I was invited to a Dell + MS event next month (I assume launching their line) and I had to refuse it - as it was a paid-for event, but also I could already see the risks for a company like us who have so many people and departments - all you need is one poorly configured laptop and company secrets can spill out.
Show threadAndrew PrillamanMay 24, 2024

@gerowen @GossiTheDog

Scott Hanselman

Show threadGavin Jones May 24, 2024
@GossiTheDog I can't say how much I dislike this. One minor positive is it looked like he needed elevation to get to that particular folder, but that still means you're one "crappy MS sudo" away from having all your data uploaded somewhere by a trojan.
Show threadSystem AdminihaterMay 24, 2024
@GossiTheDog All they care about is money and they are too big to take to court. Capitalism.
Show threadAlan Miller  🇺🇦May 24, 2024
@GossiTheDog he says it's in "opaque blobs" and shows a bunch of autonamed files with no extension but that means nothing - Markdown files are opaque blobs as well if you strip the filenames/extensions and don't open them.
Show threadGaëtan PerraultMay 24, 2024

@GossiTheDog the dude in that TikTok is Scott Hanselman. He's active on Mastodon on hachyderm.io

He's generally friendly.

Show threadIan RobinsonMay 24, 2024

@GossiTheDog “Hope that helps”

More than you know mate. More than you know.

Show threadDelegateVoidMay 24, 2024
@GossiTheDog It is now the single most important attack vector ever. 😂
Recall is gonna Backfire
Show threadunlucio 🌍 May 24, 2024

@GossiTheDog I never doubted for a second that it was actually being done on the NPU.

What I'll _never_ believe is that they'll not be using that stuff to monetize their users. More banners spammed to users, more value for shareholders.

It worths remembering Microsoft's main strategy: Embrace, Extend, Extinguish
This time the target is humans, because fewer humans to pay, more value for the shareholder.