Microsoft Recall’s security concerns have resurfaced following a recent test that revealed the AI screenshotting tool continues to capture sensitive data – a persistent issue despite numerous security updates. Ahead of its public beta release in April, Microsoft implemented a series of security enhancements for Recall, including a filter designed to block the AI from recording sensitive information such as passwords, credit card numbers, social security numbers, and other confidential details. However, it’s clear that further refinement is still necessary. The Register’s Avram Piltch conducted a thorough security assessment of Recall, and the results demonstrated that the AI’s filtering mechanism is far from reliable. The filter functioned effectively when keywords like "password" or "pay" were visible on the screen. However, when these keywords were absent, Recall frequently failed to block screenshots, often capturing sensitive data unintentionally. For example, Piltch’s test revealed that Recall screenshot a document containing a list of usernames and passwords, even though those terms weren’t explicitly labeled. This highlights a potentially flawed strategy where Recall relies on visual cues – such as the presence of the word "password" – to determine if a screenshot should be taken. This reliance on keywords creates a significant vulnerability, as the AI’s accuracy is entirely dependent on the way sensitive information is presented. If the expected keywords are not present, or if they’re obscured, there’s a substantial risk that Recall will bypass the filter and capture the data. Consequently, users can never be entirely certain that Recall will correctly protect their sensitive information.

Microsoft’s Windows Recall includes an export feature, allowing non-Microsoft websites and apps to utilize snapshots from a Copilot PC. Furthermore, an upcoming OneDrive update bypasses security protocols between business and personal files, raising additional concerns. The Copilot AI assistant can now optionally view an entire desktop, potentially shedding light on complex Windows error codes, such as 0x8007002c. As Piltch noted, "There are so many ways that people store and refer to personal data that it’s impossible to imagine Recall or any software catching them all." The risks extend beyond just passwords and credit card numbers. Piltch’s test also uncovered instances where Recall screenshot a bank account page, displaying balance and transaction information – even without the associated login credentials. This data could be exploited by malicious actors. Another critical vulnerability revealed by the test is the possibility of remotely accessing Recall screenshots. Activation of Recall requires setting up Windows Hello Enhanced Sign-On, which typically necessitates fingerprint or facial ID authentication. However, Piltch successfully accessed Recall screenshots using only a PIN, demonstrating a bypass of the intended security measures. This highlights a significant flaw in the system’s security protocols.

Considering the ongoing issues with Recall, it’s unsurprising that the feature has faced widespread criticism regarding its security and privacy implications. Despite numerous security updates, the fundamental problems persist. As a "WIP preview feature," Copilot remains a substantial initiative for Microsoft, evidenced by its promotion during the Windows 11 setup process. Currently, the most prudent course of action is to keep Recall completely disabled. For ongoing updates and the best deals, consult the PC Gamer team’s coverage: 2025 games : This year’s upcoming releases Best PC games : Our all-time favorites Free PC games : Freebie fest Best FPS games : Finest gunplay Best RPGs : Grand adventures Best co-op games : Better together"