cR0w 
@GossiTheDog @xanathar "Add it to the app filtering list" that is completely uncontrolled by the org in BYOD VDI scenarios.
Simply Simon@cR0w @GossiTheDog @xanathar If you're going that far down the rabbit hole of potential threats caused by screenshotting, you probably need to remember that none of them protect you against the OG screenshot, a camera, which we all have in our pockets 24 hours a day.
@Salty @GossiTheDog @xanathar Down the rabbit hole? A feature that is likely going to be enabled on the personal workstations of workers in the near future, recording everything they do on corporate VDI, does not seem anywhere near a rabbit hole. I see it as a likely common scenario, not some fringe risk theory.
@cR0w @GossiTheDog @xanathar I didn't mean it in the sense of fringe theory, I just meant that it's all moot when I can simply point my phone at the screen, click a button, and defeat literally every every safeguard you have debated so far to prevent it.
@Salty @GossiTheDog @xanathar You're conflating a threat actor bypassing controls with legitimate employees simply trying to do their job. One is intentional while the others are being used by Microsoft and unwittingly putting corporate resources at risk.
IAintShootinMis@cR0w @Salty @GossiTheDog @xanathar
I'm not even sure that's the conflation. It seems that we're not accounting for frequency and impact; two extremely significant metrics in risk assessment.
The frequency of a user photographing a screen is likely small. Compared to automatically screenshoting a screen every 20 seconds.
The impact of a user photographing a screen is likely high, but not compared to automatically screenshoting EVERY app, performing OCR on the text, saving it to a DB, et al
@iaintshootinmis @Salty @GossiTheDog @xanathar Fair. But then scale it up even further to almost all users.
@cR0w @Salty @GossiTheDog @xanathar
Or, to put it more bluntly, it's intellectually dishonest to pretend like a user is going to take 1400 photos during an 8 hour work day, OCR them, catalogue them, and potentially lose them to hackers.
And worse than dishonest, it's immoral to shirk our responsibility as infosec practitioners and equate the two risks.
(8hrs * 60m * 60s)/20sec = 1440 photos in a 8hr shift.