Microsoft Recall’s Security Concerns Persist

Reports indicate that Microsoft’s Recall, an AI tool designed to enhance productivity by capturing screenshots, may still be exposing sensitive information like credit card details and passwords. Initially claimed to have undergone significant security updates, new tests reveal that its filtering capabilities are lacking.

According to Avram Piltch from The Register, a recent security assessment demonstrated that Recall could capture sensitive data under certain conditions—specifically when contextual keywords like “password” are absent. When this happens, it indiscriminately captures any visible content, posing a risk to user privacy.

Key Findings:

• The AI relies on visual cues for data detection, which makes its effectiveness questionable.
• Sensitive information, including bank account balances, was also found in captured images.
• Remote access to Recall screenshots can be achieved through the Windows Hello system, raising further privacy concerns.

Given its track record of security issues, users are advised to keep Recall disabled until further improvements are confirmed.