Snynet Solution Logo
MON - SUN: 10 AM - 6 PM
+60 11 5624 8319

Blog

Microsoft turns down individual tracking in workplace software following outcry

Image Description

Microsoft has agreed to lower some of the privacy settings in its new productivity tool after a significant backlash

Privacy advocates had last week raised concerns about the Productivity Score tool in Microsoft 365 that would allow employers to gather granular data about particular employees.

In a blog post, Jared Spataro, corporate vice president, Microsoft 365 acknowledged the concerns and announced that the company is, “responding by making changes to the product to further bolster privacy for customers.”

Aggregating data

It was the tools’ ability to enable employers to drill down into data on individual employees over the last 28 days that spooked data privacy researcher Wolfie Christl.

Microsoft has addressed this concern by removing user names from the product: “Going forward, the communications, meetings, content collaboration, teamwork, and mobility measures in Productivity Score will only aggregate data at the organization level,” wrote Spataro, adding that employers or administrators will no longer be able to access data about how a particular employee is using Microsoft 365.

Spataro also shared that they are tweaking the user interface of the feature to make it clear that “Productivity Score is a measure of organizational adoption of technology”.

He assured that the Productivity Score was always about scoring an organization rather than an individual. The execution however was flawed as the screenshots shared by Christl clearly showed that the feature scored individuals. 

Spataro explained that in addition to dropping username altogether, Microsoft will also make “privacy disclosures in the product to ensure that IT admins know exactly what we do and don’t track.”

Via: GeekWire

Date

03 Dec 2020

Sources


Share


Other Blog

  • The official Windows 10 data wiping tool can actually leave user info remaining

    Microsoft’s data wiping feature isn’t working as intended on some versions of Windows, and is leaving behind data that can be easily accessed, researchers have claimed.

    The news was confirmed by Microsoft MVP Rudy Ooms, who published a blog post on his findings, as well as explained it in a bit more detail over on Twitter.

    As Ooms explained, the Reset PC > Remove Everything option leaves data on the old system in both Windows 10 version 21H2, and Windows 11 version 21H2. Both Wipe and Fresh Start options work as intended on Windows 10 21H1 and Windows 11 21H1, he added. 

    TechRadar needs you!

    We're looking at how our readers use VPNs with different devices so we can improve our content and offer better advice. This survey shouldn't take more than 60 seconds of your time, and entrants from the UK and US will have the chance to enter a draw for a £100 Amazon gift card (or equivalent in USD). Thank you for taking part.

    >> Click here to start the survey in a new window

    In most cases, the OS would create a folder called Windows.old on the “wiped” or “fresh start” disks, containing user data, Ooms says. This is obviously not by design, as choosing these two options prompts the warning “This removes all personal and company data and settings from this device.”

    Fixing the problem

    To make matters worse, when a user wipes a device, the Windows.old folder also contains previously encrypted data, but now it’s decrypted. Furthermore, OneDrive files marked as “Always keep on this device” will remain in the Windows.old folder, as well.

    On the other hand, wiping the drive also removes Bitlocker, which could be a problem for some users who use Bitlocker to safely backup important data.

    For the time being, Microsoft does not have a fix for the problem. However, Ooms says he’s created a PowerShell Script, as a temporary solution. Those looking for an utter and complete wipe of all data should first run the script, and then proceed with the cleanup. 

    Reporting on the news, Tom’s Hardware also says that users can manually remove this data, by deleting the Windows.old files following the wipe. After that, they can use a wipe-free space utility, to ensure the sensitive data can’t be recovered by a data recovery tool.

    Users should always double-check the contents of the drive after wiping, the publication concludes, as they can not only find their old files in Windows.old, but also on other storage hardware installed on the endpoint.

    Via: Tom's Hardware

    Read More
  • How decentralized models are reimagining the cloud

    Decentralized cloud storage services offer unprecedented levels of security and privacy over the popular centralized services.

    Read More
  • Google wants to help you avoid bad Chrome extensions

    Google Chrome is widely regarded as one of the best browsers around – but this popularity often comes with some risk, as criminals look to target its huge user base.

    In its latest update, the company is attempting to help users decipher which Google Chrome extensions are legitimate and which ones to avoid through new Chrome Web Store badges. 

    Google says there will be two types of badges: Featured, given to extensions that "follow our technical best practices and meet a high standard of user experience and design"; and Established Publisher, for those "who have verified their identity and demonstrated compliance with the developer program policies." 

    Chrome web store badges

    (Image credit: Google)

    The goal is to give users an easier way to see whether an extension is really what it says it is without having to look through the reviews or search the web - hopefully helping users avoid malware and other security threats. 

    Google says the overall process for awarding the badges will be manual – hopefully helping cut down on bad actors gaming the system – and will be based on whether the extension complies with the latest APIs, offers an "enjoyable and intuitive experience", and other factors. 

    Extensions can be dangerous 

    It feels like every month (or maybe every two) we get a new story about a bad Chrome extension that abused its privileges to infect a person's computer or some other dastardly scheme. 

    A recent example was The Great Suspender, a popular extension that forced excess tabs to sleep to save resources, that was delisted by Google (and even uninstalled for users) for containing malware. 

    The openness of the Chrome Web Store means that pretty much anyone can get in and given the sheer popularity of Chrome, which has a 90%-plus market share, bad extensions are a serious opsec risk. 

    Read More
  • Pornhub now accepts cryptocurrency, as Mastercard and Visa cut ties

    Pornhub has recently announced it will now accept payments in cryptocurrency for its Premium services, as the world's biggest payment companies cut ties

    Read More

Find Out More About Us

Want to hire best people for your project? Look no further you came to the right place!

Contact Us