this post was submitted on 10 Oct 2024
1145 points (97.9% liked)
Technology
59358 readers
5233 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
So.. how does this exist in corporate environments where PCI DSS is necessary? Is the government also going to have to deal with fallout from this?
I wonder if there will ever be a point where legislation dictates features from an os vendor.. we lost control of our hardware when they started forcing updates. I'm sure someone will hack a DLL or something to allow explorer to run but kill this component... But should we really need to hack our systems to protect ourselves from spying?
Inb4 Linux - I ran Slackware in the early 90s, and my server still runs a deb based distro.. but when I want to play Forza, I'm pretty limited with my choices, etc.
Microsoft: We're going to arbitrarily require TPM and SecureBoot and say that makes Windows 11 more secure even though that's a feature of your motherboard, not our operating system.
Also Microsoft: In Windows 11 the file explorer program depends on a program that periodically sends us screenshots of your screen.
So secure!
Security <> privacy. And this is where they slice the difference. Although, they're not secure, either lol
Sending random screenshots somewhere is not secure at all lmao. That's a hacker's wet dream.
I've been wondering this too. Will there be a way for company policy admins to somehow remove this fully? I work in an industry that deals with very sensitive and private information - no way in hell this would ever even remotely be allowed or pass any audits. Even just existing but being disabled could be problematic.
But big companies aside, how will this impact small companies who have no real in house IT? The potential for it to be capturing and storing stuff like, as you say anything required by PCI compliance, could turn into a nightmare. We also know this will inevitably be hacked or used by spyware somehow, someday, too no matter how secure they say it may be. So now a bad actor can recall an entire day work and data capture from a worker?
Wondering the same here. I work in an extremely regulated industry as well. We have MS as a strategic partner but haven't even deployed win 11 yet.
That said we have a deal to use co-pilot and also chatGPT. Both in a unique version that is compliant with company policies. Co-pilot integration into teams is not quite recall level but similar, think video transcripts, meeting and chat summaries, etc. I have no clue how this works practically but I assume there are some strict contracts regarding training data and data usage in place.
From my understanding, you can prevent Recall from running just fine, you only can't remove it.
OS level malware. I suspect it will be turned on in an update a few years down the road. And then MS will be caught, say "whoops my bad!" And pay a 100 million dollar fine after their new valuation on the stock market of 5 trillion dollars.