this post was submitted on 22 May 2025
227 points (99.1% liked)

Privacy

5974 readers
422 users here now

A community for Lemmy users interested in privacy

Rules:

  1. Be civil
  2. No spam posting
  3. Keep posts on-topic
  4. No trolling

founded 2 years ago
MODERATORS
[email protected]
227
“Microsoft has simply given us no other option,” Signal says as it blocks Windows Recall (arstechnica.com)
submitted 1 day ago by [email protected] to c/[email protected]
9 comments fedilink hide all child comments
top 9 comments
sorted by: hot top controversial new old
[–] [email protected] 92 points 1 day ago (2 children)

Lol copyrighted material can be protected from recall but fuck your and other peoples privacy. What a joke Windows is.

[–] [email protected] 12 points 1 day ago (1 children)

The media companies have teeth unlike the rest of us

[–] [email protected] 1 points 1 day ago

Not even that, m$ likes to pretend it makes cinema equipment. If it angers the studios it's beyond fucked

[–] [email protected] 7 points 1 day ago (2 children)

But aren't your texts protected by copyright as well?

[–] [email protected] 17 points 1 day ago

in this case The word „Copyright“ can be freely exchanged with „People who have enough money and lawyers to even touch microsoft“

[–] [email protected] 4 points 1 day ago* (last edited 1 day ago)

Simple text messages wouldn't typically be deemed copyright-worthy, but if you write a poem or take a good photograph etc. and send that, then it absolutely would be covered by copyright.

However, Microsoft doesn't actively publish your copyrighted material. If their improper storage results in your copyrighted work being leaked, that might be a lawsuit (like you might be successfully sued for putting your backup of a movie onto an insecure server on the internet), but now that Recall is opt-in and all, it would be a difficult lawsuit.

[–] pelespirit 43 points 1 day ago (1 children)

But the changes go only so far in limiting the risks Recall poses. As I pointed out, when Recall is turned on, it indexes Zoom meetings, emails, photos, medical conditions, and—yes—Signal conversations, not just with the user, but anyone interacting with that user, without their knowledge or consent.

Researcher Kevin Beaumont performed his own deep-dive analysis that also found that some of the new controls were lacking. For instance, Recall continued to screenshot his payment card details. It also decrypted the database with a simple fingerprint scan or PIN. And it's unclear whether the type of sophisticated malware that routinely infects consumer and enterprise Windows users will be able to decrypt encrypted database contents.

[–] [email protected] 7 points 1 day ago (1 children)

That last part sounds overdone:

And it's unclear whether the type of sophisticated malware that routinely infects consumer and enterprise Windows users will be able to decrypt encrypted database contents.

Thanks to W11 requirements for a tpm chip, I don’t think it’s a stretch to assume it uses the same method as Passkeys use.

[–] [email protected] 21 points 1 day ago

No, with passkeys you tell the TPM: Never give me the secret, even if I ask you. In this case, Recall needs the database decrypted to work. TPM won't save you.