unencrypted Archives

Winsage

April 29, 2025

Microsoft’s AI Secretly Copying All Your Private Messages

Microsoft is relaunching its AI-driven feature, Recall, which continuously captures background screenshots on Copilot+ PCs optimized for AI functionalities. Initially introduced in May, Recall was retracted due to privacy concerns over unencrypted storage of screenshots containing sensitive user data. After testing through Microsoft's Insider program, Recall has been updated to encrypt the screenshot database and requires users to opt in to save screenshots. However, it still poses risks by potentially capturing sensitive information from communications without the knowledge of other parties involved. Security researcher Kevin Beaumont has noted that the sensitive information filter is unreliable, and the encrypted database is only secured by a basic four-digit PIN. Beaumont's testing revealed that Recall indexed everything it stored, including ephemeral messages and images. He cautioned users to check if Recall is enabled when discussing sensitive topics with others on Windows PCs.

Winsage

April 11, 2025

Microsoft Re-releases Recall for Windows Insiders Alongside New Copilot+ Features

Microsoft has begun rolling out the Recall feature in Insider build version 26100.3902 after addressing previous security vulnerabilities. The Recall feature uses Neural Processing Units (NPUs) in Copilot+ PCs to capture screenshots and convert them into natural language descriptions for improved productivity. The new build also introduces the Click to Do feature for Snapdragon-powered PCs, enhances Phone Link functionality for easier content sharing, and includes the Windows Share feature for quick image edits before sharing. The rollout of these features will be gradual.

AppWizard

March 29, 2025

Signal controversy: Why the secure messaging app is all over the news

Signal is an end-to-end encrypted messaging application that distinguishes itself from competitors like Messenger and WhatsApp through its open-source technology and the use of the Signal protocol for encryption. It encrypts messages before they leave the sender's device, ensuring that only the intended recipient can read them. However, its security is tied to the user's device, and vulnerabilities such as weak passwords and unprotected devices can compromise message integrity. Despite its strong encryption, Signal may not meet the stringent security protocols required for sensitive government communications, particularly due to its message deletion feature and the lack of support for record-keeping. The app is considered secure for everyday users, but may not be suitable for high-stakes governmental communication. The rise in cyber threats underscores the need for secure communication channels, leading organizations to consider encrypted messaging solutions like Signal, while also evaluating alternatives within the encrypted messaging landscape.

AppWizard

March 27, 2025

Which is the most secure messaging app? Expert weighs in after U.S. war plan leak blunder

A significant intelligence breach occurred when Jeffrey Goldberg, editor-in-chief of The Atlantic, was inadvertently added to a sensitive Signal group chat that included discussions about U.S. military operations targeting Houthi rebels in Yemen, involving Vice President JD Vance and Defense Secretary Pete Hegseth. Senate Democratic Leader Chuck Schumer described it as "one of the most stunning breaches of military intelligence." Experts emphasized that the breach resulted from human error, not flaws in encryption technology. Signal is considered the gold standard for secure messaging due to its end-to-end encryption and lack of metadata collection. Other platforms like iMessage and WhatsApp have varying levels of security, with iMessage requiring both parties to use Apple devices for full protection, and WhatsApp collecting metadata. Telegram does not enable end-to-end encryption by default for standard messages. The incident highlights that even the most secure messaging applications cannot prevent breaches caused by human oversight.

AppWizard

February 19, 2025

Warning over privacy of encrypted messages as Russia targets Signal…

Russia-backed hacking groups have advanced their techniques to infiltrate encrypted messaging platforms like Signal, WhatsApp, and Telegram, posing a threat to journalists, politicians, and activists. These hackers are targeting Signal's "linked devices" feature using malicious QR codes to gain real-time access to victims' messages. Incidents have included compromised Signal accounts leading to military strikes. The Sandworm group has been linked to compromising Signal accounts on devices captured in Ukraine, utilizing a Russian-language website to provide instructions for linking accounts to their infrastructure. Successful breaches often go undetected for long periods, with attackers using modified Signal group invite pages and phishing kits. Additionally, threat actors have stolen Signal database files from Android and Windows devices, with malware like Infamous Chisel extracting sensitive data. Attacks on Signal and other messaging services are increasing, with Russia-aligned groups employing social engineering tactics against users of WhatsApp. In response, Signal has enhanced security measures, including a new interface to alert users of unauthorized device links and additional authentication steps.

AppWizard

February 16, 2025

Federal workers say they increasingly distrust platforms like Facebook

Federal employees are increasingly concerned about the security of traditional communication platforms and are migrating to encrypted messaging apps like Signal for personal and work-related discussions. This shift is driven by distrust in technology companies, particularly those perceived to have ties with the Trump administration, and fears that user data may be shared with the government. Employees have noted a change in workplace conversation dynamics, becoming more guarded and circumspect. Concerns have also been raised about the potential misuse of personal data, highlighted by past incidents involving companies like Meta. Many federal workers are seeking security tips through forums and adopting measures such as anonymous display names to protect their identities. The federal workforce consists of over 3 million individuals, indicating a significant portion of the U.S. labor market is affected by these privacy and data security concerns.

Winsage

December 19, 2024

Microsoft’s AI “Recall” Feature Caught Screenshotting Your Social Security Number

Microsoft's AI-powered "Recall" tool captures sensitive information, including credit card numbers and social security numbers, despite a new "filter sensitive information" feature intended to prevent this. Tests by Avram Piltch revealed that the filter fails to recognize sensitive data in various contexts, such as when entering information in Windows Notepad or filling out loan applications in Microsoft Edge. Initially launched as part of Microsoft's "Copilot+ PCs," Recall faced backlash over privacy risks and was temporarily withdrawn. It has since returned for select Insiders with encrypted screenshots, but concerns about its effectiveness in protecting sensitive information remain.

Winsage

November 1, 2024

Windows 11’s controversial AI Recall feature delayed again

Microsoft has postponed the rollout of its Recall feature, originally set for October, to December for members of the Windows Insider program. Brandon LeBlanc, a senior product manager, stated that the delay is to ensure a secure and trusted experience. Recall is designed to capture snapshots of a user’s desktop activity using AI and store this information in a searchable database. Concerns about privacy and unencrypted data storage have led Microsoft to implement enhanced security measures and make Recall an opt-in feature that can be uninstalled.

Tech Optimizer

October 2, 2024

How BCM One migrated data from an unencrypted Amazon RDS for PostgreSQL database instance to a new encrypted instance using AWS DMS | Amazon Web Services

BCM One is a global provider of NextGen Communications and Managed Services, with Flowroute as a brand specializing in SIP trunking and business messaging. Flowroute encrypted its Amazon RDS for PostgreSQL database instances using AWS DMS. Storage encryption is essential for protecting disk data and involves a key from AWS KMS. Existing RDS instances cannot be directly encrypted, so a new encrypted instance must be created using RDS snapshots and AWS DMS. The migration strategy includes creating an empty RDS instance, initiating a CDC-only AWS DMS task, creating a snapshot of the unencrypted instance, generating an encrypted snapshot, and restoring a new encrypted RDS instance. RDS Proxy is used to manage connections and minimize downtime during the transition. The process involves creating a DMS login role, configuring RDS parameters, creating DMS endpoints, and verifying replication success. After the migration, the proxy authentication must be updated to connect to the encrypted database. The migration process also highlights the importance of primary keys and unique constraints to prevent duplicate entries during replication.

Winsage

September 30, 2024

Microsoft brings back its most controversial Windows AI feature, with beefed up security

Microsoft's Recall, an AI-driven search tool for Copilot+ PCs, faced delays due to user concerns about unencrypted screenshots potentially exposing sensitive information. In response, Microsoft announced a revamped version with enhanced security features, including: - Encryption of all captured data. - Integration with Windows Hello Enhanced Sign-in Security for controlled access. - An opt-in feature that is not activated by default and can be uninstalled. - Storage of screenshots in a secure VBS Enclave, accessible only when users engage with Recall. These improvements aim to address the security issues identified in the initial rollout.