Microsoft's controversial Recall feature has returned to Windows Insider builds with promised security improvements, but recent testing reveals concerning gaps in its ability to protect sensitive user information. This AI-powered desktop surveillance tool, designed to create searchable memories of computer activities, raises serious privacy concerns despite its enhanced security measures.
Privacy Filter's Mixed Performance
The newly implemented Filter sensitive information setting, enabled by default in Recall, shows inconsistent effectiveness in protecting sensitive data. While successfully blocking credit card information on major e-commerce platforms like Pimoroni and Adafruit, the filter fails to recognize sensitive data in common scenarios. Tests revealed that credit card numbers, social security numbers, and personal information entered in Notepad, PDF forms, and custom HTML forms were captured despite the privacy filter being active.
 |
|---|
| The Recall feature captures sensitive data like social security numbers, raising significant privacy concerns |
Security Improvements and Remaining Concerns
Microsoft has addressed earlier security criticisms by implementing encryption for captured screenshots and database files. The feature now requires Windows Hello authentication for access and operates on an opt-in basis. However, the system's reliance on a PIN fallback option potentially compromises its security, as remote access tools can still bypass biometric requirements with just a 4-digit PIN.
 |
|---|
| The Windows Hello authentication prompts users to secure their access to Recall snapshots |
Data Storage and Accessibility
Recall stores its data in an encrypted database file (ukg.db) and screenshots in an AsymStore subfolder, both showing improved security compared to the previous plain-text storage. While these files appear inaccessible through conventional means, the potential for unauthorized access remains a concern, especially given the sensitive nature of the captured information.
 |
|---|
| The AsymStore directory showcasing the improved encrypted data storage for Microsoft Recall |
Microsoft's Response and Future Development
Microsoft acknowledges the need for improvement, stating they will continue enhancing the filtering functionality through user feedback. The company encourages users to report instances where sensitive information isn't properly filtered through their Feedback Hub. However, the fundamental question remains whether any AI-based filter can reliably identify and protect all forms of sensitive information across diverse usage scenarios.
Implications for Users
The current implementation of Recall presents a significant privacy risk, particularly for users who regularly handle sensitive information. While the feature offers potential benefits for digital memory and productivity, its inability to consistently protect sensitive data suggests users should carefully consider whether the benefits outweigh the privacy risks before enabling this feature on their systems.