• IninewCrow@lemmy.ca
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    *Windows won’t take screenshots of everything you do after all (that the company will admit to without you knowing)— unless you opt in

    • pixel_prophet@lemm.ee
      link
      fedilink
      English
      arrow-up
      0
      ·
      5 months ago

      People will be deceived into opting in via some UI anti pattern like they do with the online user accounts and onedrive now.

    • kboy101222@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      0
      ·
      5 months ago

      Cause they’re going to show a pop-up that advertises some “cool new feature”, and the 99% of users who aren’t tech literate will say yes and never think about it again.

      People on this site severely overestimate how much the average person cares and their overall level of tech.

    • floofloof@lemmy.caOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      5 months ago

      Because they’ll add it to the list of coercively and deceptively worded questions they force you to answer before you can use a WIndows account, phrase it so as to sound useful and harmless, and have a big friendly “Sounds great!” button and a tiny “No thanks, I prefer my life to be shit” link.

  • Sensitivezombie@lemmy.zip
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    No one is going to opt-in to having screenshots taken of their activities on the OS. If no one opts-in then it will hinder Microsoft’s original plan of collection such data for copilot. Along comes the new marketing language to soften the approach and they still collect data.

    • x0x7@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      5 months ago

      No one would opt-in to having all of their personal files sent to the cloud. But Windows managed to get my father using OneDrive even though he had no idea what it was. He was absolutely pissed when I told him. Somehow that wasn’t enough to get off of windows completely though.

  • x0x7@lemmy.world
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    They use dark patterns and cryptic dialog boxes to get old people to opt in.

    • Agent641@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      5 months ago

      Are you certain you don’t want to enhance your Microsoft experience?

      ^YES, I CRAVE A LIMITED ESPERIENCE^

      NO, GIVE ME THE BEST THING

  • rob200@lemmy.cafe
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    I still don’t trust Microsoft. I hadn’t bought a Windows since Windows 10, and this won’t change that.

  • AutoTL;DR@lemmings.worldB
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    This is the best summary I could come up with:


    Microsoft had originally planned to turn Recall on by default, but the company now says it will offer the ability to disable the controversial AI-powered feature during the setup process of new Copilot Plus PCs.

    Recall uses local AI models to screenshot mostly everything you see or do on your computer and then give you the ability to search and retrieve anything in seconds.

    Everything in Recall is designed to remain local and private on-device, so no data is used to train Microsoft’s AI models.

    TotalRecall extracts the Recall database so you can easily view what text is stored and the screenshots that Microsoft’s feature has generated.

    “In some cases, this will mean prioritizing security above other things we do, such as releasing new features or providing ongoing support for legacy systems.”

    Davuluri references Microsoft’s SFI principles in today’s response, noting that the company is taking action to improve Recall security.


    The original article contains 747 words, the summary contains 151 words. Saved 80%. I’m a bot and I’m open source!

  • DefederateLemmyMl@feddit.nl
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    5 months ago

    They’re just going to do a classical boil-the-frog operation:

    • Step 1: Make it opt-in and present it as the new cool thing.
    • Step 2: Make it opt-out, and if the users opts out, show a scary warning about how the cool thing won’t work anymore.
    • Step 3: Make it opt-out, but hide the opt-out option deeply.
    • Step 4: Remove opt-out, but it still works with a registry hack. Microsoft apologists will still thinks it’s cool because “just use this simple registry hack bro”.
    • Step 5: Remove opt-out alltogether, and automatically opt people in who had previously opted out.
    • Step 6: Enjoy their boiled frog!
    • MudMan@fedia.io
      link
      fedilink
      arrow-up
      0
      ·
      5 months ago

      They already had this feature once in Windows 10, and you don’t remember because it doesn’t work like that.

      • DefederateLemmyMl@feddit.nl
        link
        fedilink
        English
        arrow-up
        0
        ·
        edit-2
        5 months ago

        Just disconnect your network cable, press this magic key combination and type this undocumented command: “MSBLAOIGKSDF /ACZSF”

  • the_doktor@lemmy.zip
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    …says the company that wanted to destroy every bit of your privacy. I don’t care what they “promise”, don’t listen to them.

    Microsoft is finished. Install Linux.

  • Geyser@lemmy.world
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    “The ability to disable the…feature during the setup process…” does not mean opt in, that means opt out.

    Knowing windows setup, you need to click customize during the setup process and then go through several setup pages before you’re presented this option (or have to dig into additional/advanced settings to find it).

    Most people won’t do this, won’t know how to do this, or will receive the pc with the initial setup complete and won’t know if this is on or off.

    • Norgur@fedia.io
      link
      fedilink
      arrow-up
      0
      ·
      5 months ago

      And even if you find it, it will have an idiotic and obscure name, like “advanced history experience” or something absolutely nondescript

      • teft@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        5 months ago

        Also when you try to disable it they will use all sorts of dark pattern pop ups to dissuade you from disabling it.

      • MudMan@fedia.io
        link
        fedilink
        arrow-up
        0
        ·
        5 months ago

        The exact wording, which, again, is in the article you didn’t bother to read before posting, is “Quickly find things you’ve seen with Recall. Recall helps you find things you’ve seen on your PC when you allow Windows to save snapshots of your screen every few seconds”.

        Seriously, I don’t even like the feature. I will absolutely turn it off, just like I did Timeline, and I expect it’ll be gone in the next version, just like Timeline was.

        But I did look at the stupid article before posting. So there’s that.

        • Norgur@fedia.io
          link
          fedilink
          arrow-up
          0
          ·
          5 months ago

          So, are we done berating everybody passive-aggressively with just a sprinkle of condescension? Because maybe, just maybe, I was making a remark about the general practice of Microsoft to hide stuff behind nondescript bullshit names (especially in non-English versions where the English bullshit name gets translated literally most of the time, which yields even more nondescript results).

          Maybe, just maybe, you chose the wrong comments to act up on “PeOpLe NoT rEaDiNg ThE aRtIcLe” when all that was posted about was inconsequential stuff about the precise clicks needed to turn a feature off that’s not even in the respective menus yet. So this is not someone talking bullshit because they misunderstood the headline about a murder case or something.

          All that was said was about practices Microsoft has abused into oblivion: Hiding stuff behind obscure menus and hiding stuff behind obscure names. The comments made were a persiflage of exactly that.

          Maybe, just maybe, the precise placement and wording in a menu that doesn’t even exist yet is a topic inconsequential enough that people will not read the tenth article about the general subject (Copilot becoming “opt-in”) to make sure they wouldn’t miss this super irrelevant point to the story. A point which you guessed from screenshots that haven’t reached production yet (even if they are likely to go into production as shown, it can still change), so your condescending attitude is based on wobbly grounds.

          There are tons of articles where people post absolutely wrong and quite absurd stuff because they didn’t read the article. Some of them even matter (politics, world events). So let’s criticize people when they don’t read through actually important articles before posting, and agree that it’s okay to not read the exact article posted on unimportant sidenote stuff if one knows about the thing in general. Because if I’d be only allowed to comment on the article posted itself, I wouldn’t need Lemmy, I could just comment on the site that posted the article in the first place.

          Besides: You did notice that you commented on two different people, yes? Because you sure sounded like you didn’t read the usernames before commenting and thought you always replied to the same guy.

          • MudMan@fedia.io
            link
            fedilink
            arrow-up
            0
            ·
            5 months ago

            That is a very long rant to agree with me in that you care enough to rant about this online but not enough to read past the headline.

            So no, I have no intention to shut off the condescension, there is nothing passive about my aggression and people absolutely don’t read the article regardless of how important they feel the issue is. Yesterday this was all about the most important threat to the security of the average cosnumer, now it’s “unimportant sidenote stuff”. Somebody should have told MS how unimportant it is, could have saved the devs the crunch to fix it by the time it ships in 10 days.

            For the record, you’re right about how hard it is to find things sometimes in localized versions of OSs. That’s true of all of them, though, and I blame the fact that we’re all stuck here speaking the haegemonic language and reading about tech only in English while local journalists struggle to stay relevant, so we learn all the brand names and settings in English despite the software itself being available in localized versions. But that’s a whole other conversation.

            • conciselyverbose@sh.itjust.works
              link
              fedilink
              English
              arrow-up
              0
              ·
              5 months ago

              This is still a huge threat, because their “mitigations” are a joke. The only possible way this can be an acceptable feature is if it is built from the ground up with security as the primary concern. You can’t “tack on” security at the end and get a secure product.

              If security was in any way a consideration, there is no path to shipping anything where the database is unencrypted at any point. Not in an insider build. Not as a tech demo. Nothing.

              • MudMan@fedia.io
                link
                fedilink
                arrow-up
                0
                ·
                5 months ago

                I mean, no, that’s dogmatic weirdness. The feature is secure if the feature that is live is secure. Software isn’t magic, it doesn’t have karma, it works the way it works.

                Now, this is as secure as whatever they ship, but even assuming it’s ironclad it’s still a bad feature. You do not need an automatic screengrabber to remember what you did yesterday. Every piece of work software you may need to reopen has a recent files list, Windows has a file search function, browsers have a history. You have a brain. You don’t lose track of so much stuff that you need to be recording your entire activity just in case. This is a bad gimmick that covers no use case, just like Timeline was. And because it’s a bad useless feature the logical thing is to turn it off and forget about it, which is why everybody seems to have memory holed that Timeline ever existed.

                You guys really don’t need to get weird about it for it to be a bad idea, but since they’re railroaded into shipping it, at least it’s better to ship it with proper encryption and authorization features. Still turn it off, though.

                • conciselyverbose@sh.itjust.works
                  link
                  fedilink
                  English
                  arrow-up
                  0
                  ·
                  5 months ago

                  The feature that is live cannot possibly be secure. That’s the entire point.

                  If you do not design every element that interacts with user data very consciously and deliberately around controlling access properly, you cannot get a result that is not massively vulnerable to bad actors. Security is a core design principle. It cannot possibly be achieved after the fact.

            • Norgur@fedia.io
              link
              fedilink
              arrow-up
              0
              ·
              5 months ago

              So your reply is, “but other people don’t read…”? Yeah, I’m not “other people”, so stop making me a scapegoat for behavior you’ve seen elsewhere (and on which I agreed with you, btw).

              Yet, you misunderstood my comment: Copilot is important. It not being encrypted is important (and hilariously naive). Where they put the turn on or off option in the setup menu ultimately is not. I wrote that pretty clearly. Didn’t you read my answer? That was the only information I could have gotten from the article I didn’t have already. Thing is: If I had read it (from a Screenshot I wouldn’t have seen anyway because I normally use reading mode, no less), I would still have commented on the dark patterns Microsoft uses to get you to send your “telemetry” to them.

              I have since skipped through the article and literally the only thing in there I didn’t know were those stupid screenshots. So why the heck would I read the article when I had read others just like it?

              You just saw something you’d been irritated about in other places and treated me (and others here) as if we were the offenders behind the things you saw as well, lashing out without provocation and felt justified because “it happens all the time”. While some of that’s correct, the people you went and “showed’em” aren’t the source of all evil, so skip the scapegoat bullshit and be civil towards people you’ve never talked to before, will ya?

              • MudMan@fedia.io
                link
                fedilink
                arrow-up
                0
                ·
                5 months ago

                Yeah, see, here’s how I know I’m not scapegoating you and you also didn’t read it.

                The article clearly explains they WILL in fact encrypt it and require a passkey to access it once per session.

                So yeah, no, my condescension is exactly about you. And others. But also you.

                • Norgur@fedia.io
                  link
                  fedilink
                  arrow-up
                  0
                  ·
                  5 months ago

                  Are you really this dense? The whole opt-in thing comes because Researchers found that Recall wasn’t encrypting shit and there was already a tool out to scrape this data automatically (Totalrecall). That was what I mentioned there. Come on, you must be trolling now. This is just laughable. But so you can’t be half-read my comments and make it fit your argument again, it’s even in the bloody article:

                  Microsoft’s changes to the way the database is stored and accessed come after cybersecurity expert Kevin Beaumont discovered that Microsoft’s AI-powered feature currently stores data in a database in plain text. That could have made it easy for malware authors to create tools that extract the database and its contents. Several tools have appeared in recent days, promising to exfiltrate Recall data.

      • tigeruppercut@lemmy.zip
        link
        fedilink
        English
        arrow-up
        0
        ·
        5 months ago

        Even without all the invasion of privacy implications, I’m skeptical it would even work. Source: 20 years of “Windows is checking for a solution to the problem” that has never worked even once.

        • FaceDeer@fedia.io
          link
          fedilink
          arrow-up
          0
          ·
          5 months ago

          I’ve actually had those troubleshooters work for me several times in recent years. Mostly fixing networking issues.

          • tigeruppercut@lemmy.zip
            link
            fedilink
            English
            arrow-up
            0
            ·
            5 months ago

            I guess for the basic stuff I do when I’ve had programs crash I’ve never seen it do anything, but nice to know it’s not completely useless

            • FaceDeer@fedia.io
              link
              fedilink
              arrow-up
              0
              ·
              5 months ago

              Frankly, this is one of the areas I’m most looking forward to seeing what integrated AI can do for Windows. A couple of months ago I was having trouble with getting my printer to work and what I ended up doing was taking a screenshot of the printer settings and pasting the literal image of the screen into Bing Chat to ask it what I was doing wrong. It was able to parse my settings out of the image and figured out what I needed to change to make the printer work.

              Having a troubleshooting AI like that that can actually “read” the entire state of my machine would be great.

    • gravitas_deficiency@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      5 months ago

      Remember when making a Microsoft cloud account was optional during Windows installs, and it was trivia to skip/opt out?

      Pepperidge Farm remembers.

      They are 100% going to do the same thing here.

    • umbrella@lemmy.ml
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      5 months ago

      not to mention they are known to re enable telemetry on systems after updates.

      i doubt this will be any different.

    • MudMan@fedia.io
      link
      fedilink
      arrow-up
      0
      ·
      5 months ago

      There is a screenshot of the opt-in screen in the article. There is no default, just two buttons to say yes or no.

      I swear, outrage should only be allowed based on the amount of work one is willing to put in before expressing it. If you don’t do the reading, you don’t get to be publicly angry. It’d save us all so much trouble.

      For the record, the feature was always optional, as per the original announcement. Presumably the change is it is now part of the setup flow where it was going to be a settings toggle instead.

      Which is, incidentally, how this used to work the first time Windows had this feature, back when it was called “Timeline” in Windows 10.

      • Geyser@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        5 months ago

        The screenshot doesn’t show preceding flow to reach it, but I did miss the “requires windows hello to enable” bit, which does suggest that wherever it is, it would have to be opt-in.

        • MudMan@fedia.io
          link
          fedilink
          arrow-up
          0
          ·
          5 months ago

          It doesn’t because that’s one of the four or five screens during the initial Windows setup where you opt in and out of all the other spyware features. They all look the same and are prompted in sequence. Unless they’re doing something very weird you absolutely have to make a choice on each of them and they are unskippable otherwise.

          I mean, you don’t have to know, if you don’t know Windows you don’t have to recognize them. But if you do it’s pretty obivous, so you… you know, could have asked or looked it up.

          Or gone through the link, because come on, you didn’t. You were obviously just reacting to the headline.

      • Ibuthyr@discuss.tchncs.de
        link
        fedilink
        English
        arrow-up
        0
        ·
        5 months ago

        The problem with MS is how they change these things in the future. It may be a clear choice now, but they will find a way to make it easier to “accidentally” opt in, or they’ll simply change it to an opt-out. They’ve been doing this sort of bullshit for quite some time now.

        • MudMan@fedia.io
          link
          fedilink
          arrow-up
          0
          ·
          5 months ago

          They really haven’t. Their onboarding flow has included this exact type of forced option for advertising data, location data and bug reports for what now? A decade, give or take? They have a very specific design language for these.

          Plus, and I keep reminding people of this and they keep forgetting, they already made this feature once. It was on Windows 10, it was called Timeline, everybody turned it off and they never did much to change that, instead just adding a less intrusive offline version of it and ultimately removing it by the launch of 11 until… well, now.

          What I don’t understand is why you guys are so set on this specific list of grievances. You don’t need to dismiss the improvements they are making. They are improvements and they are a good thing.

          If you are set on rooting for or against OSs (and why would you, stop it, that’s weird) you can instead just point out that… well, the feature itself is still garbage. Even with a default opt out, even assuming it’s fully secure. It just covers no valid use case, unless you’re starring in Memento II. It remains a security vulnerability because social engineering and shared computers are a thing. It is exactly as dumb and useless as Timeline was, and there’s a reason nobody remembers that happened. The lack of AI search really, really isn’t why that failed.

          You don’t need to come across as a paranoid conspiracy theorist making up slippery slopes to keep criticising this about the things they are actually fixing. There are plenty of valid issues with it at a fundamental design level they are not changing. Being so wildly speculative about the eeeeevil corporate MS lying to us just makes the criticisms sound less valid when the actual thing they are doing is still pretty useless at best, and most likely really bad.

          • Ibuthyr@discuss.tchncs.de
            link
            fedilink
            English
            arrow-up
            0
            ·
            5 months ago

            Look, I use Microsoft products. I have since PC-DOS became MS-DOS. You are plain wrong. Just look at the whole fiasco where MS is practically forcing users to tie their windows license to an account. It used to be easy to circumvent, nowadays it’s hidden like Waldo. They constantly do this shit. Stop shilling for corporations.

  • Mereo@lemmy.ca
    link
    fedilink
    English
    arrow-up
    0
    ·
    5 months ago

    They will just enable it by default later when the heat passes. They always do. You no longer own Windows.

    • yeehaw@lemmy.ca
      link
      fedilink
      English
      arrow-up
      0
      ·
      5 months ago

      My prediction is essentially one day windows pcs will be Linux that act like thin clients that go to windows 365.

  • FiveMacs@lemmy.ca
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    5 months ago

    Lies but ok.

    I’m sure it’s corporate speak for 'unless you opt into opting out of Microsoft recording everything’s

    I have zero reason to trust companies who are known to not be trust worthy.

    And who’s to say they don’t have this ‘opt in’ setting enabled for a week then upon the first update, whoops…it was auto enabled for everyone ‘sorry…you must not out now and sorry not sorry but we already stole everything. See y’all next update!’