this post was submitted on 04 Jun 2024
663 points (98.5% liked)

Technology

60071 readers
4820 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 

this rootless Python script rips Windows Recall's screenshots and SQLite database of OCRed text and allows you to search them.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 64 points 6 months ago (1 children)

Imagine how easy is the life of law enforcement now.

Before if they seized a laptop encrypted with bit locker they could not do anything.

Now they just need to ask Microsoft the encryption password, which is automatically and silently saved in the Microsoft account (now mandatory) and they can have all the history of what the subject of the investigation did in the past years

[–] [email protected] 34 points 6 months ago (2 children)

What? Bitlocker key tied to MS account and mandatory? What's the point of encryption if the key isn't secret any more?

[–] [email protected] 30 points 6 months ago* (last edited 6 months ago) (2 children)

To protect against casual theft of a device causing the data to be in the thief's hands in addition to the actual device.

The average person unfortunately is not likely to properly backup their encryption keys so if they forget their password (or don't use one and rely on the default of just TPM), they'll complain about losing their data. Having the key backed up gives them a way to get their data back in non-theft situations.

[–] [email protected] 14 points 6 months ago (1 children)

I like how people on lemmy seem to only think of the high stakes state sponsored theft. And not the theft that’s thousands of times more common.

[–] [email protected] 8 points 6 months ago

Yeah. Most theft targets the hardware, not the data within.

[–] [email protected] 2 points 6 months ago (1 children)

Ok, I can saw value in that but why mandatory? While most doesn't backup their keys, I do and I don't need MS help.

[–] [email protected] 5 points 6 months ago

On top of the reason the top level comment gave (easy for law enforcement) it also allows for better data collection (linking your activity to your account, no matter where, how or when it is recorded)

[–] [email protected] 7 points 6 months ago

It’s secret to most, not all.