• lath@lemmy.world
      link
      fedilink
      arrow-up
      2
      arrow-down
      21
      ·
      8 days ago

      Because malware is already using such methods to steal credentials, so by having something “legitimate” work towards preventing such situations, a countermeasure will eventually be born.

      Right now, all kind of applications take screenshots and send data without user’s knowledge. If something like blurring can trigger automatically and modify what is being sent, then the user will have some protection available instead of none.

      • vrighter@discuss.tchncs.de
        link
        fedilink
        arrow-up
        11
        ·
        8 days ago

        how will capturing screenshots prevent other software from capturing screenshots?

        And we all know countermeasures don’t exist. They can be used to train the ais out of their own existence.

        • lath@lemmy.world
          link
          fedilink
          arrow-up
          1
          arrow-down
          10
          ·
          8 days ago

          Depends. Can anyone with the know-how create a custom way of taking a screenshot/capture independent of all others or do all methods have to use an immutable function as the base?

          If the former, i agree with you. If the latter, you’re kinda wrong to believe so.

          • sugar_in_your_tea@sh.itjust.works
            link
            fedilink
            arrow-up
            6
            ·
            8 days ago

            Let’s take a step back. If we allow Microsoft Recall to take snapshots of everything, now there are two places to protect your information, and one has historical information.

            Why would you want that? Even if we somehow prevent malicious software from taking screenshots, we now have to worry about malicious software breaking Recall or any servers that have Recall info. That’s a much bigger attack surface, especially if there’s a server involved.

            This is just a terrible idea all around.

            • lath@lemmy.world
              link
              fedilink
              arrow-up
              2
              arrow-down
              7
              ·
              8 days ago

              Terrible or not, it exists and should be handled. Of those able to move away from Microsoft, good for them. Everyone else still needs the help.

              Could they be helped? Technically maybe. Will they be helped? Probably not.

              • sugar_in_your_tea@sh.itjust.works
                link
                fedilink
                arrow-up
                6
                ·
                8 days ago

                It’s much better to tell them to not use Recall.

                If you want a legislative solution, fix our privacy laws, which would likely kill this project by making it unprofitable for Microsoft. The solution isn’t to fix Recall, it’s to not use it and/or make such privacy violations unprofitable.

                • lath@lemmy.world
                  link
                  fedilink
                  arrow-up
                  1
                  arrow-down
                  1
                  ·
                  8 days ago

                  All better choices. Sadly for now reality chooses the worse option.

      • BCsven@lemmy.ca
        link
        fedilink
        arrow-up
        11
        ·
        8 days ago

        Recall is not anti-malware though, the mal-ware can still do its own data gleaning. This is just an AI feature solving a problem that nobody had.

        • lath@lemmy.world
          link
          fedilink
          arrow-up
          1
          arrow-down
          11
          ·
          8 days ago

          Many problems in the past were solved by inventions that were meant for other things. Seeing something for what it is and ignoring its untapped potential is a narrow view of life.

          • BCsven@lemmy.ca
            link
            fedilink
            arrow-up
            11
            ·
            8 days ago

            This will 100% be hacked and steal peoples identity. The first version was an unencrypted database that reaseaechers had to note for MS to change it. This is how poorly this feature is being developed.

            It will also be a parental lazy tool for spying on your kids rather than teaching them good habits and achieving autonomy. Same with employers.

            The only thing this will serve is MS. They are now selling their own MS windows $400 thin-clients that have no onboard storage, everything is cloud access. This will be MS way of giving you access to things you would probably save local, except now it is in the cloud for government or bad actor theft. There was just a giant data breach stealing meta data like this from government officials.

            We don’t need AI for AI sake. Put that processing power into AI protein folding for drug and gene research.

      • JackbyDev@programming.dev
        link
        fedilink
        English
        arrow-up
        4
        ·
        8 days ago

        Programs can already be refused from being able to view screen contents. If malware is able to circumvent this, why do you believe it would abide by the filtering rules? Further, if you really do believe this is useful, Microsoft could implement this technology without also randomly screenshotting your computer.

        • lath@lemmy.world
          link
          fedilink
          arrow-up
          1
          arrow-down
          6
          ·
          edit-2
          8 days ago

          If a malware bypasses a function directly, then closing that loophole would force future versions to find more complicated ways of achieving the same thing, which makes them more visible in the long run.

          Edit: Also, Microsoft sucks. But now that the ugly crap is out there, you’ll come to face it eventually. Why not be more prepared?

          • JackbyDev@programming.dev
            link
            fedilink
            English
            arrow-up
            3
            ·
            edit-2
            8 days ago

            What are you even talking about? Where have the goal posts gone? You wanna know what else sounds like malware? A program randomly and persistently taking screenshots of my computer and sending it to someone.