Microsoft Issues Recall Notice, Yet Sensitive Data Screenshots Remain a Possibility
Recently, Microsoft postponed the launch of Recall, the auto-capturing "photographic memory" functionality for Windows 11 Copilot+ computers, due to severe security vulnerabilities. Currently, it's back to some extent, but some users have discovered that it's not the most secure option, especially for accessing financial details online.
A handful of testers tried Recall last month, and as of December 6th, it's now accessible to everyone with a Copilot+ PC in the Windows Insider beta. The tool initially debuted in May, but security experts found it remarkably simple to access AI transcript logs for screenshotted images. The updated version of Recall now encrypts all these logs and grants access to the feature only after a Windows Hello login. The system is also supposed to identify and stop screenshots of "private information," such as banking details.
However, according to Avram Piltch from Tom’s Hardware, the filters aren't filtering nearly as much as they should. The "block sensitive information" settings should prevent the AI from taking screenshots of any site or document containing a credit card number. Tom’s Hardware discovered, however, that it would still capture a Notepad document containing the relevant information. It would also capture a fake loan application PDF and even a dummy page that Avram created, complete with a section for entering credit card info.
Despite this, the filter is not broken. Piltch mentioned that it would refuse to capture screenshots on two payment sites he tested. In its November 22 blog post, Microsoft explained that users could specify particular websites that Recall would not capture. The company added, "If you find sensitive information that should be filtered out based on your context, language, or geography, please share your feedback through the Feedback Hub."
Microsoft did not immediately respond to Gizmodo's request for comment. In this instance, Microsoft needs to consider every potential scenario. If the AI recognizes some commerce sites, it may miss instances where credit card information is entered. While all screenshots should be secured behind a Windows Hello security login, the feature remains a potential gateway for malicious actors to access sensitive information.
Recall is an optional feature, which is off by default when installed on a PC within the Insider channel. As a beta product, issues are to be expected. Microsoft issued a warning in its Nov. 22 blog post that the feature would not save any screenshots if you install Build 26120.2415 after installing the Windows beta build.
I've been using it sparingly, but it's a feature that requires extended use to assess its value. You need to accumulate a substantial number of screenshots over time and then allow your memory to fade enough to make it worthwhile. It's still, undeniably, a beta. None of the Copilot+ PCs shipped with AI models already installed; you need to download them after signing up for the Insider build. As The Verge points out, it's unsettling to know that your work, conversations, and online lifestyle are constantly monitored. What may be even more surprising is that Microsoft intended to release Recall six months ago without all those fine-tuning adjustments.
Despite the ongoing improvements, the tech industry should be vigilant about the future of Recall and similar technology. The potential security risks associated with AI-powered screenshot features like Recall warrant continued scrutiny and development of more secure alternatives in the technology sector.
