Jump to content
  • Despite assurances, Windows 11's Recall still captures a lot of sensitive data


    Karlston

    • 185 views
    • 3 minutes
     Share


    • 185 views
    • 3 minutes

    After spending six months improving Recall after its initially disastrous launch, Microsoft returned its flagship AI feature to Windows Insiders for testing in the latest preview builds. Although the company has addressed much criticism about the feature, some concerns remain, especially when it comes to Microsoft's claims about capturing sensitive data (plus other known issues like ignoring the list of filtered websites).

     

    Tom's Hardware experimented with Recall and its capability to filter out confidential information like credit card numbers, social security numbers, personal information, and other sensitive data. In some cases, Recall successfully detected and filtered out what it should not snapshot. However, many times, it ignored all clues and captured everything without any filters.

     

    For example, Recall captured a credit card number in Windows Notepad and a fully filled loan application in the Edge browser. The same happened with a simple HTML page with fields for credit card information like number, CVC, expiration date, etc. Despite the obvious clues, Recall ignored its filters and captured everything as is.

     

    A Recall snapshot with sensitive information
    Image Source: Tom's Hardware

    Still, not everything is that bad. Recall managed to detect sensitive information on e-commerce websites and capture them without any personal information.

     

    Before you grab a pitchfork, it is worth reminding that Recall is currently in public preview, and Microsoft explicitly stated that filters might not work 100%:

    We’ll continue to improve this functionality, and if you find sensitive information that should be filtered out, for your context, language, or geography, please let us know through Feedback Hub.

    In addition, Windows 11 encrypts all your snapshots, and they are only accessible after you authenticate with Windows Hello. Microsoft also promises that snapshots never leave your device, and turning off Recall purges everything immediately. Despite the reassurances, the reality shows that Copilot+ PC owners should probably think twice before embracing Recall.

     

    Although Recall is now available (in preview) for more devices, including AMD and Intel-powered ones, it is probably a good idea for many to stay away from it and let Microsoft take its time to polish the experience and make it more reliable. With that said, it remains a big question whether Microsoft can regain user trust after all the drama that happened this year.

     

    Source


    Hope you enjoyed this news post.

    Thank you for appreciating my time and effort posting news every day for many years.

    2023: Over 5,800 news posts | 2024 (till end of November): 5,298 news posts

    RIP Matrix | Farewell my friend  :sadbye:


    User Feedback

    Recommended Comments

    There are no comments to display.



    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...