privacy risks Archives

Winsage

May 22, 2025

Signal says no to Windows 11’s Recall screenshots

Signal has updated its Windows app to enhance user privacy by preventing Microsoft’s Recall feature from capturing screenshots of secure conversations. The new version activates screen security by default, using a digital rights management (DRM) approach similar to that of streaming services. Users can disable this feature in the app’s settings, but concerns have been raised about its impact on accessibility features like screen readers. Developer Joshua Lund has highlighted the need for app developers to access tools that protect sensitive information from OS-level AI systems. Microsoft’s Recall feature, designed to enhance productivity, currently lacks an API to exclude sensitive content from its archives, posing privacy risks. While Microsoft has measures to filter activities from private browser windows, users must have technical knowledge to adjust settings for specific applications. Signal continues to adapt to digital privacy challenges while advocating for better support from operating system developers.

Winsage

May 22, 2025

Signal now blocks Microsoft Recall screenshots on Windows 11

Signal has introduced a "screen security" feature in its Windows application to enhance user privacy by preventing Microsoft's AI-driven Recall functionality from capturing content displayed within the app. This feature is active by default on all Windows 11 devices and sets a Digital Rights Management (DRM) flag on Signal's app windows. Recall, launched in May 2024, captures screenshots of active windows and has raised privacy concerns, leading Microsoft to make it optional and implement various security enhancements. Users can disable Signal's screen security but will be warned about potential privacy risks. Signal's developer, Joshua Lund, highlighted ongoing concerns regarding privacy in applications like Signal and called for a balance between privacy and accessibility in AI technologies.

Winsage

May 15, 2025

Microsoft Copilot+ Recall: who should disable it, and how

Microsoft's Recall feature for Copilot+ PCs was initially announced a year ago but delayed due to privacy concerns raised by cybersecurity experts. The updated version was released in April 2025 for Windows Insider Preview builds and rolled out more broadly in May. Key updates include requiring user permission for activation, encrypting database files with hardware-based Trusted Platform Module (TPM), and implementing a filter to prevent saving sensitive information. Recall is enabled on a per-user basis, can be uninstalled, does not require a Microsoft account, and processes data locally. However, it still has vulnerabilities, such as allowing access with a regular Windows PIN after initial biometric authentication and failing to consistently filter sensitive data. Recall can log interactions during calls and capture self-destructing messages, posing privacy risks. It can impact performance and battery life, especially during gaming. Users handling sensitive data or frequently using video conferencing may want to disable or remove Recall. Instructions for disabling or removing Recall are provided, along with precautions for those who choose to use it.

Tech Optimizer

May 9, 2025

Does Antivirus Software Collect Your Data

Antivirus software collects various types of data to protect systems, including system details (operating system version, RAM, CPU type, computer name), network data (local and external IP addresses, DNS server, network name), user data (Windows username, time zone, language, general location), browsing history (if web protection features are enabled), and file-related information (file names, locations, hashes, and sometimes entire files). The AV-Comparatives report indicates that while some antivirus companies manage data responsibly (e.g., F-Secure, G Data, K7), others (e.g., Norton, Panda, McAfee) have been criticized for poor practices. Data sharing can enhance malware detection but poses privacy risks, as seen in AVG's past actions of selling user browsing history. Users can limit data collection by adjusting settings, reviewing installation agreements, avoiding free antivirus software, choosing privacy-conscious vendors (like F-Secure, ESET, G Data), and reading privacy policies. Despite concerns about data collection, antivirus software is essential for protection against cyber threats, and selecting a transparent provider can help safeguard privacy.

AppWizard

May 8, 2025

Someone Reportedly Hacked the Messaging App Mike Waltz Was Seen Using

A cybersecurity breach involving TeleMessage, an Israeli messaging application company, has raised concerns about customer data safety. The breach allowed unauthorized access to direct messages and personal information on the platform, which lacks full end-to-end encryption like Signal. The hacker reported that accessing the data took only 15-20 minutes and exposed names, phone numbers, and email addresses of Customs and Border Protection officials, along with information from various financial institutions. TeleMessage is used by government agencies, including the State Department and the Centers for Disease Control and Prevention, making the breach more significant. While the hacker did not access all content, they indicated potential for further breaches, and journalists have verified some of the compromised material. TeleMessage's claim of maintaining Signal's security standards is questioned, as archiving messages introduces privacy risks. A spokesperson for Signal warned against using unofficial versions of their app, highlighting security vulnerabilities.

Tech Optimizer

April 26, 2025

How to disable the PC webcam and protect it from unauthorized access

The webcam is a crucial tool for remote communication but poses privacy risks, particularly through a threat known as CamFecting, where unauthorized access can occur via malware, malicious websites, or system vulnerabilities. Preventive measures include using antivirus software, disabling the webcam when not in use, and physically covering the camera with privacy caps or tape. Signs of unauthorized access include unexpected illumination of the webcam light, unusual camera behavior, unknown files on the system, abnormal data consumption, and decreased battery life. To deactivate the webcam, users can adjust settings in major browsers and operating systems. Maintaining digital hygiene, such as regularly updating software, using security systems like firewalls and VPNs, and being cautious of phishing attempts, is essential to minimize risks.

Winsage

April 21, 2025

5 amazing Linux distros that are better than Windows, but you should avoid them as a beginner

Linux distributions have evolved to be more accessible for users transitioning from Windows and macOS, with Debian-based distributions being relatively easy to navigate. DietPi is an ultra-lightweight OS that requires manual configuration of essential packages, making it more suitable for experienced users. Tails prioritizes user privacy by using the Tor network and operates from a USB drive, but is not ideal for casual users. Qubes OS enhances security through virtualization but has a steep learning curve and challenges with GPU passthrough. Talos Linux is optimized for Kubernetes projects but may be difficult for newcomers due to its lack of SSH support and immutable design. Bazzite, a gaming-focused distribution based on Fedora, offers a user-friendly setup but may not support multiplayer games with kernel-level anti-cheat technology, making it less suitable for competitive gamers.

Winsage

April 14, 2025

Microsoft is finally rolling out its controversial Recall feature that screenshots everything you do (again), but only for select users

Microsoft's AI screenshotting tool, Recall, is being reintroduced on Windows 11 for select members of the Windows Insider program. After concerns about storing sensitive information as unsecured plain text files, Microsoft has made Recall an opt-in feature and requires Windows Hello for accessing Recall data. Sensitive information is no longer stored as plain text. Users can control their data by pausing or deactivating Recall, deleting screenshots, or filtering content. Despite these improvements, some users remain cautious due to Recall's history and its ability to monitor screen activity, leading to privacy concerns.

Winsage

April 11, 2025

Microsoft is putting privacy-endangering Recall back into Windows 11

Security and privacy advocates are concerned about Recall, an AI tool in Windows 11 that captures and stores user activity every three seconds. Initially unveiled in May 2024, Recall faced criticism for its potential to expose sensitive information and privacy risks, particularly in situations like intimate partner violence. Microsoft temporarily suspended Recall in response to backlash but announced plans to reintroduce it for insiders using a preview version. Recall allows users to search for previously accessed content by saving snapshots of their activity, which can be controlled and paused by the user. Microsoft aims to address privacy concerns with an opt-in requirement and the ability to pause the feature, but skepticism remains about its effectiveness.

AppWizard

March 31, 2025

Signal vs. WhatsApp — what’s the difference between these messaging apps?

Signal and WhatsApp both offer end-to-end encryption but differ significantly in ownership and data practices. WhatsApp is owned by Meta, which collects metadata about user interactions, while Signal is a nonprofit that collects minimal metadata and prioritizes user privacy. WhatsApp has a more user-friendly interface with features like chat history backups, group video calls, and business tools, whereas Signal focuses on privacy with features like "Sealed Sender" to hide sender identity and options to blur faces in photos. Users prioritizing privacy may prefer Signal, but practicality depends on their contacts' app usage. Users can choose to use both apps for different types of communication.