[harles]

I’m highly skeptical of the conclusions here. Many corporations already record periodic screenshots of employee devices. There’s also a bunch of hand waving of “security incident here, therefore hackers will access your machine”.

The crux of the argument boils down to > If you have malware running on your PC for only minutes, you have a big problem in your life now rather than just changing some passwords.

Ok. How often does malware run for just a few minutes? Honestly if there’s malware running on any of my machines, it’s not clear the outcome is any different here. Sure there’s a hypothetical scenario where it’s worse. But it’s also just as likely to grab a copy of my password manager while it has everything unencrypted. And it’s also way more likely to persist for days or months, making access to historical data moot as it’ll just install its own key logger.

[wkat4242]

> I’m highly skeptical of the conclusions here. Many corporations already record periodic screenshots of employee devices. There’s also a bunch of hand waving of “security incident here, therefore hackers will access your machine”.

In highly specific situations, like customer care, yes. Also these machines tend to be super locked down, no admin rights for the users.

And yes this practice is risky. I managed some PCs for customer care and one of them was taken in for repair by the service desk and replaced, and redeployed without wiping it. It ended up in payroll and when we found out their manager was furious (quite understandably so).

Yes malware can install its own keylogger. But it's an extra step once again.

[croes]

Hackers are one risk. Authorities another.

It won't take long before the demand access to your stored search data.

Of course only to prevent major crimes like terrorism, child abuse and copyright infringement.