this post was submitted on 04 Jun 2024
662 points (98.5% liked)

Technology

55940 readers
3959 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world
662
xaitax/TotalRecall: This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots. (github.com)
submitted 1 month ago by salarua@sopuli.xyz to c/technology@lemmy.world
85 comments fedilink hide all child comments
 

this rootless Python script rips Windows Recall's screenshots and SQLite database of OCRed text and allows you to search them.

you are viewing a single comment's thread
view the rest of the comments
[–] xavier666@lemm.ee 94 points 1 month ago (5 children)

Please go through the FAQ section of the git project. It's an eye-opener.

Q. Does this enable mass data breaches of website?

A. Yes. The next time you see a major data breach where customer data is clearly visible in the breach, you’re going to presume company who processes the data are at fault, right? But if people have used a Windows device with Recall to access the service/app/whatever, hackers can see everything and assemble data dumps without the company who runs the service even being aware. The data is already consistently structured in the Recall database for attackers. So prepare for AI powered super breaches. Currently credential marketplaces exist where you can buy stolen passwords — soon, you will be able to buy stolen customer data from insurance companies etc as the entire code to do this has been preinstalled and enabled on Windows by Microsoft.

[–] Pieisawesome@lemmy.world 4 points 1 month ago (1 children)

I doubt that. It’s preinstalled and enabled for personal users.

Even if it is enabled by default on pro/enterprise, there will probably be a group policy to disable it.

[–] HelloHotel@lemm.ee 7 points 1 month ago* (last edited 1 month ago) (2 children)

It feels like this was intended for buisnesses to monitor for phrases on your screen like "coolmath games unblocked free"

or to extract and upload a summary of what happened every second of every day to the server defined in the group policy.

[–] KairuByte@lemmy.dbzer0.com 2 points 1 month ago

I doubt it. There are plenty of tools that already do this if that was what they wanted, they’d just model it after those. Storing it locally isn’t how such tools usually work, they get shipped off to a remote server for ingestion.

load more comments (3 replies)