Security News > 2022 > December > Microsoft Teams: A vector for child sexual abuse material with a two-day processing time for complaints

In August 2022, the commissioner sent Transparency Requests requiring seven service providers - Apple, Meta, WhatsApp, Microsoft, Snap, Skype, and anonymous chat service Omegle - to explain the tools, policies and processes they use to address child sexual exploitation and abuse material and actions.

Among the findings assessing the orgs' responses, the commissioner found Microsoft isn't using the PhotoDNA image-detection technology it helped to develop and promotes as a tool "To stop the spread of online child sexual abuse photos."

The commissioner also singled out Apple and Microsoft for criticism on grounds that neither "Attempt to proactively detect child abuse material stored in their widely used iCloud and OneDrive services, despite the wide availability of PhotoDNA detection technology."

"Apple and Microsoft also reported that they do not use any technology to detect live-streaming of child sexual abuse in video chats on Skype, Microsoft Teams or FaceTime, despite the extensive use of Skype, in particular, for this long-standing and proliferating crime."

As there are significant jurisdictional and other conflicts associated with operating a global service for use by individuals in one country to communicate with individuals in other countries, Microsoft does not deploy classifiers or other automated content detection tools on video conferences held through Microsoft Teams.

The report notes that Microsoft first indicated that some review queues for Teams saw matters left under consideration for 19 days.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/12/16/esafety_comissioner_csea_report/