this post was submitted on 01 Jun 2024
1018 points (97.9% liked)
Technology
59204 readers
3157 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
No major corp I'm aware of is excited about these changes. Legal especially would like there to be the minimum records retention required by law, and a months long AI searchable database of individual user actions on a PC is a nightmare scenario for them.
If the IT departments of any major corp allows anyone within their network to enable this feature, they and everyone the work for need a permanent waning label for idiocy and utter incompetence attached to their resume.
Can I forward your comment to my IT team? Because they've done worse than that already :(
I don't know, if I was IT decision-making and I worked for a company I didn't particularly like I might install this for the executive stratosphere and hope for subpoenas.
Can you elaborate on what "subpoenable information" means. Like I have a vague idea but im not super clear if thats like a legal term with special considerations or whatever. Elaboration would be helpful.
Not OP but the scenario described is say... A company and a specific manager gets sued for harassment. The plaintiff can be entitled to discovery related to the complaint, and that could now include the searchable screenshot database from the managers computer showing all the clear evidence that he harassed the plaintiff. Nightmare scenario for legal departments of companies.
If you're suspected of something and law enforcement can get a subpoena, you'll have to hand over the contents of your microsoft keylogger, actually microsoft will hand over your contents from their keylogger.
It means it's the kind of stuff that law enforcement would require a warrant in order to obtain.
The damage is mitigated by the fact it only recalls last 3 days by default
"By default" meaning it can be changed.
Then someone in the company gets their device compromised, and security starts looking what happened on the device that time. "We'd have that data, but it was deleted yesterday because of the retention policy on recall" -answer from that new guy in IT dept. Security then reminds that the company policy requires minimum 30 days retention for all logging of security events.
Forensic data recovery. How many 500GB drives ship to PCs that never use more than 20% of that?
The article references family, domestic violence, employers, and fraudsters but doesn’t really focus on legal liability.
Before you said that it was specifically addressed. Interesting shift of the goal post.