Microsoft's announcement of the new AI-powered Windows 11 Recall feature has sparked a lot of concern, with many thinking that it has created massive privacy risks and a new attack vector that threat actors can exploit to steal data.
Revealed during a Monday AI event, the feature is designed to help "recall" information you have looked at in the past, making it easily accessible via a simple search.
While it's currently only available on Copilot+ PCs running Snapdragon X ARM processors, Microsoft says they are working with Intel and AMD to create compatible CPUs.
Recall works by taking a screenshot of your active window every few seconds, recording everything you do in Windows for up to three months by default.
These snapshots will be analyzed by the on-device Neural Processing Unit (NPU) and an AI model to extract data from the screenshot. The data will be saved in a semantic index, allowing Windows users to browse through the snapshot history or search using human language queries.
Microsoft says that all of this data is encrypted using BitLocker tied to the user's Windows account and is not shared with other users on the same device.
While this sounds fun and interesting, it immediately raised concerns about obvious privacy risks and whether Microsoft plans on gobbling up all of this data.
However, Microsoft says Recall has been designed so that all of the data is saved directly on the user's device in an encrypted format, providing users with complete control over the feature, including if it's enabled and what apps it can take screenshots of.
"Recall is a key part of what makes Copilot+ PCs special, and Microsoft built privacy into Recall's design from the ground up. On Copilot+ PCs powered by a Snapdragon® X Series processor, you will see the Recall taskbar icon after you first activate your device. You can use that icon to open Recall's settings and make choices about what snapshots Recall collects and stores on your device. You can limit which snapshots Recall collects; for example, you can select specific apps or websites visited in a supported browser to filter out of your snapshots. In addition, you can pause snapshots on demand from the Recall icon in the system tray, clear some or all snapshots that have been stored, or delete all the snapshots from your device."
❖ MicrosoftMicrosoft also says it will not create screenshots of Microsoft Edge's InPrivate windows (and other Chromium-based browsers) or content protected by DRM. However, they have not confirmed whether other browser's private modes, like Firefox, will be supported.
In a Monday press event, Yusuf Mehdi, Corporate Vice President & Consumer Chief Marketing Officer, assured journalists that Microsoft is taking a very conservative approach with Recall.
"We're going to keep your Recall index private and local and secure on just the device," said Mehdi.
"We won't use any of that information to train any AI model, and we put you completely in control with the ability to edit and delete anything that is captured."
Furthermore, Microsoft also reiterated to BleepingComputer that data for Recall will only be available locally and not be stored in the cloud, with the company once again restating that "data is not accessed by Microsoft."
Microsoft has also started to share more technical details, such as group policies that can be used to disable Recall company-wide and how end users can disable the feature.
Cybersecurity experts and regular users still concerned
Microsoft's promises have not done much to reassure the cybersecurity community or its customers, with our tweet regarding this new feature receiving over 90 comments, all negative.
So, why are most cybersecurity experts, researchers, and analysts so worried about this feature?
First and foremost, large companies have a history of exploiting users' data for their own profit, making it hard for users to trust Microsoft when they say they won't access the Recall data.
Users are not alone, as the United Kingdom's data protection agency, the Information Commissioner's Office (ICO), is also contacting Microsoft to ensure that users' data will be properly safeguarded and not used by the company.
"We expect organisations to be transparent with users about how their data is being used and only process personal data to the extent that it is necessary to achieve a specific purpose. Industry must consider data protection from the outset and rigorously assess and mitigate risks to peoples' rights and freedoms before bringing products to market," reads a press statement from the ICO.
"We are making enquiries with Microsoft to understand the safeguards in place to protect user privacy."
Even if we accept that Microsoft will not access Recall data, there are still massive security and privacy implications with this product.
Microsoft admits that the feature performs no content moderation, meaning it will gobble up anything it sees, including passwords in a password manager or your account numbers on your banking website.
Or if you are in Word, writing a confidential agreement, a screenshot of that content will be created, too. If you have a single PC and share it with others, then you may want to be careful about what pictures or videos you look at, as, guess what, those will be recorded as well.
Yes, you can block apps from being screenshotted by this feature, but most people will just let it run without mucking around with the feature's settings.
All of this information is now stored in Windows 11's semantic index and easily searchable by anyone with access to your PC, whether authorized or not.
That's just the tip of the iceberg, though.
If a threat actor or malware compromised your device, all of this data will already be decrypted by Bitlocker, making it accessible to the hacker.
For example, a threat actor or malware could simply steal a Recall database and upload it to their own servers for analysis. This information could then be used to extort users or potentially breach user's accounts if credentials were exposed.
Cybersecurity expert Kevin Beaumont, known to be an outspoken critic of Microsoft at times, also expressed concern about how this feature creates a massive attack surface, likening it to a keylogger "baked into Windows."
"If you look at what has happened historically with infostealer malware — malicious software snuck onto PCs — it has pivoted to automatically steal browser passwords stored locally," Beaumont explained in a new blog post.
"In other words, if a malicious threat actor gains access to a system, they already steal important databases stored locally. They can just extend this to steal information recorded by Copilot's Recall feature."
And it's not only information-stealing malware, as enterprise-targeting malware like TrickBot had previously included modules that would steal a domain's Active Directory database for offline cracking of credentials. There is nothing to stop malware from taking a similar approach and stealing the Recall databases as well.
Microsoft has always taken the stance with vulnerabilities and attacks that once a device is compromised, all bets are off, and security boundaries are thrown out the window.
Basically, you got infected or fell for a social engineering attack, so it's your fault all these bad things will happen to you.
However, as Microsoft is one of, if not the, largest caretakers of consumer data and computing security, it seems irresponsible to introduce additional risk into an already risky environment.
While we can go on and on expressing how this feature is a massive privacy risk, I will instead leave you with this quote from Microsoft's recent pledge to prioritize security above all else.
"If you're faced with the tradeoff between security and another priority, your answer is clear: Do security. In some cases, this will mean prioritizing security above other things we do, such as releasing new features or providing ongoing support for legacy systems," Microsoft's CEO Satya Nadella said in an email to Microsoft employees.
"This is key to advancing both our platform quality and capability such that we can protect the digital estates of our customers and build a safer world for all."
Update 5/22/24: This article previously said Microsoft is working with Intel and AMD to make all Windows 11 devices compatible, when they are instead working with them to make compatible CPUs.
Comments
b1k3rdude - 5 months ago
Yep and the first thing you do is either uninstall CP and/or of its services & dependants (if micro$haft allow), or disable it in the registery and group policy. For the majority of users this is very HARD PASS.
I can't imagine any SME or Enterprize will allow this on on work machines, were responsible for an estate it wouldnt even be a question.
DrkKnight - 5 months ago
"Yep and the first thing you do is either uninstall CP and/or of its services & dependants (if micro$haft allow), or disable it in the registery and group policy. For the majority of users this is very HARD PASS."
Recall is CLEARLY malware designed and distributed by Microsoft. Forget disabling, uninstalling, deleting registry values and dependents.
The thing to do is to just not download and install the OS itself ,send Microsoft a CLEAR message that their tactics will not be tolerated. Windows 11 already has a shitty market share at a time when it should be much, much higher than it is right now, make 11's market share plummet, they'll get the message.
Microsoft has been looking for a way into your private life for years, they finally found a way to do it , now they are gonna try and cram it down your throat.
DrkKnight - 5 months ago
""Yep and the first thing you do is either uninstall CP and/or of its services & dependants (if micro$haft allow), or disable it in the registery and group policy. For the majority of users this is very HARD PASS."
Recall is CLEARLY malware designed and distributed by Microsoft. Forget disabling, uninstalling, deleting registry values and dependents.
The thing to do is to just not download and install the OS itself ,send Microsoft a CLEAR message that their tactics will not be tolerated. Windows 11 already has a shitty market share at a time when it should be much, much higher than it is right now, make 11's market share plummet, they'll get the message.
Microsoft has been looking for a way into your private life for years, they finally found a way to do it , now they are gonna try and cram it down your throat.
They make everyone have the most recent hardware on their system to run their prized OS in the name of security and what do they do ? they create their own security nightmare. This is proof positive that TPM , your CPU and all the other hardware restrictions they put on everyone to run this crap has absolutely nothing to do with security. Windows 11 just as all the other Windows OS's before it will be riddled with holes , the restrictions of the hardware have nothing to do with the security of the OS. Your OS is only as secure as the person sitting behind the keyboard.
Besides , if the hardware restrictions were about Windows security , there would be no need for Windows Updates now would there?
JohnC_21 - 5 months ago
This after the government tore Microsoft a new one for "shoddy cybersecurity practices".
Windows Security is an Oxymoron.
DyingCrow - 5 months ago
M$ making spyware, who'd think that day would come? And not exfiltrating any data for profit, just out the kindness of it's untrustable heart?
The sad thing is that this is going to baked in our computers. More sh** to disable, more bloat, more updates to break everything else.
IF they make this a separate app, i'm fine. IF this gets baked in, which it will, yet again like every day, M$ can go f*** itself.
0Willy - 5 months ago
"While this sounds fun and interesting...".
That's a poor choice of words, Lawrence. Things that happen automatically in the background, using resources and wasting HDD space by default are not fun and interesting.
"Would you like to enable..." are five words Microsoft needs to learn. Better yet, "would you like to install..."
All features dreamed up by the Marketing Department need to be options on request. Not installed by default or even taking up user's disk space unless they ask for it.
jmwoods - 5 months ago
Paul Thurrott has a different take...
https://www.thurrott.com/windows/windows-11/302928/windows-11-recall-is-not-a-privacy-concern
b1k3rdude - 5 months ago
As someone put it "Paul Thurrott has his uses, and a source of accurate information isn't one of them." -
- https://www.neowin.net/forum/topic/1196677-fact-checking-paul-thurrott-bad-info-in-the-echo-chamber/#comments
tech_engineer - 5 months ago
Currently on windows 10 there is a similar thing, Timeline, which saves open documents and websites or things, I don't know what it is exactly because the first thing I do on a machine is to disable it.
ctigga - 5 months ago
One has to wonder if MSFT is trying to exit the OS market?
Each day that passes, I'm reminded more and more why I only run Windows instances in a VM on Linux.
Win7SP2 was the last release that felt like upgrade.
Win8 and later has largely been continuous garbage changes/downgrades :(
Sloth - 5 months ago
"Recall works by taking a screenshot of your active window every few seconds, recording everything you do in Windows for up to three months by default."
Sounds like a typical info-stealer. Won't be touching this one with a 6-foot barge pole.
foreignremoteworker - 5 months ago
I really hope they don't end up rolling out this feature, but if they do, they better give me the option to disable, even uninstall it, not just deleting the screenshots, gosh!
I have been doing just fine thus far without needing to look at pictures showing me just what I have been doing on my computer for up to the last three months.
DrkKnight - 5 months ago
Best thing to do is just not download the build at all
progan01 - 5 months ago
Nadella's hand on our throats gets bigger and thicker every day. How can you orbit his Microsoft Sun when you can REFUSE him? Won't be allowed. You won't even be able to talk about it. Watch.
Mahhn - 5 months ago
MS and goog are competing for data hording and antiprivacy. So glad I am old and almost dead. This word has turned into more of a disaster than I thought possible 20 years ago. And it certainly is not getting better.
hubdog - 5 months ago
I'm sure they will provide the data to police, NSA or any other "government" official who wants to unmask you at the drop of a dime, regardless of your privacy settings. BEWARE THE TYRANY that this will introduce. Time for linux.
0Willy - 5 months ago
You have a problem with law enforcement agencies using all possible means to investigate crimes against you?
Even criminals have crime committed against them!
There are two side of the privacy debate. The problem is finding balance, not putting a stop to everything.
AFAIAC law enforcement can see whatever they like. Commercial entities should have and keep nothing without consent.