I think the Copilot+ feature may end up being turned off by default in the final release, or at least easily disabled. There are still too many concerns about just how much of the data in Copilot+ is sent back directly to Microsoft specifically.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Security Researcher Calls Windows 11 AI 'Recall' Screenshotting Feature a Disaster [Updated]
- Thread starter MacRumors
- Start date
- Sort by reaction score
You can get so many OS for Raspberry... No need for AI.Too late - they drank the Kool-Aid too:
Seems like a good and useful feature in my book. How many times do we remember a quality sh**post and go looking for it, only to be unable to find it?
They’ve already said you can disable it yourself I’m pretty sure, as well as the fact that nothing is sent back and is all kept locally.
I also don’t see how much of a security issue it is since this requires admin rights to have access to anything, people should never be using default admin accounts on a computer, and there obviously needs to be local access to the machine or someone hacked into your network which people have to a of security options to protect themselves.
I find this whole thing to be quite exaggerated, and we are still in prerelease.
Apple will try too. Just give em some time. Xi would love this feature enabled on Macs for sure!!
This is one of the most egregious things I've ever seen a company do
I'm pretty sure the whole reason for this feature is to spy on users and gather their data for AI training, which is bad enough. But the huge security problems are beyond belief
People get hacked all the time. It happens. There's no reason to open an extremely vulnerable attack vector and then on top of it save all the data in plaintext that can easily be compromised
I'm pretty sure the whole reason for this feature is to spy on users and gather their data for AI training, which is bad enough. But the huge security problems are beyond belief
Yeah, that's the problem
Most people use admin accounts, according to Microsoft. That's not going to change anytime soon, especially for the kind of person that isn't aware enough of security issues to turn off this feature
People get hacked all the time. It happens. There's no reason to open an extremely vulnerable attack vector and then on top of it save all the data in plaintext that can easily be compromised
Last edited:
Microsoft has stated that this feature runs entirely on-device. Nothing gets uploaded anywhere.
The user would need to deliberately grant admin rights to the malicious program. it is not on Microsoft to prevent users from running (and elevating!) potentially malicious software.
It can be disabled by the end user, but you have to dig down several menus to find it. I'd like to see it in the initial Settings menu.
The hackers get in the same way they do now: by tricking people. Every report of ransomware taking down a company is due to someone installing something they shouldn't have, and software that absconds with the Recall database will get in the same way.
Again, I do understand, that "tricking people" is the flash word, isn't it? You need to give permission and or turn it on. People like myself don't even use it. Being gullible about what you are stressing about how this hack works; is what we hope people are not doing to have this happen. Nobody is Infallible and can be involved in a Hideous attack. People who post PSAs on these by people who just want to cause tension (look at all the remarks people post on this thread) Some have some Validity others just dislike/bias remarks. Fine to each their own. If users take risks excess sites are at risk of being hacked etc. Taking your private information with little regard to its safe existence. Have a Great Day
The idea to have a keylogger/screen recorder with OCR running ALL THE TIME and permanently on my PC, to save everything I do, is absolutely wild. How can anyone NOT see the security nightmare this will become at some point. Holy ****
Sometimes more RAM doesn’t help. I recently ran into a Patreon bug where my 192GB Mac Studio was in red memory pressure and had hundreds of gigabytes written to swap. Just for a couple of Patreon pages! Nothing else on the system was running. I ran into this bug many times but just recently noticed the memory impact. I now have total a few dozen terabytes written just due to this bug. The web is a giant mess these days.
It should not be on Microsoft to shelter the people that would, metaphorically speaking, be lured to walk off the edge of a cliff. Whenever they make an effort to do so they are vilified anyways, anyone remember Windows 10 S Mode?
If malware gets admin privileges, it already effectively gains full control of the machine, including access to passwords, payment methods, etc. This is regardless of the existence of Recall.
And the important bit: Recall can be disabled. By users, the organization administrator, etc. Better yet - it won't even be available on systems lacking an NPU.
It should be off by default and it shouldn’t “accidentally” be enabled again after a Windows update
But what about the future! Technology! Look how efficient I am! Stonks! Advancement! Increased capital efficiency!!! More soap with co-pilot we become more efficient so we can make more soap because it tells me how to make more soap! I can fire everyone and hire AI to make all the soap so we can be free to fight each other under the garage every night!
I think a fair compromise would be "optional during setup," yeah? If turned on, it'll download the necessary models from Windows Update.
See Charlie Stross post above. Apple has been doing AI better by making it useful and taking careful steps. Like the iPod and iPhone they don’t need to be the first. They just need to make something useful and clean.
I'm in the middle of it and found this bit humorous.
Imagine that. Someone with your computer password has access to the entire computer! What's next, someone with my keys can get into my house? Scandalous!
This is straight up untrue. Microsoft has stated that Recall can be disabled, they even provide instructions to do so.
Overall, I find their writeup to be reactionary to news articles instead of going to a primary source like Microsoft's release. Moreover, I would not be so quick to call Apple's OCR, Facial recognition and translation features "AI" when Apple themselves has called them Machine Learning until recently. That's splitting hairs, though.
Overall review; I strongly recommend checking out a primary source and forming your own opinions on the presented information.
Hello, I do have a Windows tower but it is not even plugged in, haha!
Kept it just in case I needed to use Windows (like you), which I have not turned this thing on in at least five or six years.
Screw Windows, especially Windows 11!
Wonder if this will get people to switch to a Mac?
Linux and Ubuntu should see an increase as well.
True, but without Recall it "only" gets access to the current state of the machine, not its history as well.
It also gains access to passwords in Windows' password manager, payment methods in your browser, cookies, access to all your drives, etc.
Recall or not, you're cooked if a bad actor gains that much access to your machine.
Silence MS man. He’s entitled to a overall correct opinion without being super correct on every detail. If you’re going to act like you’re 100% correct every time you put thousands of words to the page you know you’re not.