Microsoft Copilot’s long-awaited Recall feature has finally been released with added security enhancements, but experts are still expressing concerns about potential vulnerabilities despite the improvements.
Originally announced in May as part of Microsoft’s AI-powered Copilot+ PCs, Recall is a tool that captures screen images to help users easily retrieve documents, files, and websites using natural language commands. However, the controversial tool faced backlash over security and privacy issues, with critics pointing out its keylogger-like functionality and susceptibility to AI-focused cyberattacks.
Security researcher Alexander Hagenah even developed a tool called TotalRecall to extract and display data from Recall, raising more red flags about the tool’s potential risks. Former Microsoft senior threat intelligence analyst Kevin Beaumont went as far as to call Recall a “disaster” in a scathing Medium post.
In response to the criticism, Microsoft made several adjustments to its Recall rollout plans over the last six months. Originally intended for a broad preview on Copilot+ PCs, the company later shifted to a limited preview for Windows Insider Program members. The release date was pushed back multiple times, with Recall eventually becoming available for Windows Insiders on Snapdragon-powered Copilot+ PCs in late November, followed by AMD and Intel devices in early December.
To address security and privacy concerns, Microsoft introduced enhanced security measures in late September, turning Recall into an opt-in feature with encrypted sensitive data and locally stored snapshots. The company emphasized its commitment to a security-first mindset, aligning with its Secure Future Initiative expansion.
While these updates have been lauded as positive steps, security and privacy experts remain cautious. Thorin Klosowski of the Electronic Frontier Foundation highlighted concerns about trust in companies storing user data and potential privacy issues related to shared computers. He noted that despite improvements, questions remain about user awareness and control over Recall’s data capturing.
Dustin Childs, from Trend Micro’s Zero Day Initiative, praised Microsoft’s efforts but emphasized the importance of continued monitoring to assess the effectiveness of the security enhancements. Alessandro Acquisti from Carnegie Mellon University also acknowledged the progress in addressing privacy concerns but raised the possibility of unforeseen risks associated with stored data accessibility through AI.
Karan Sondhi, CTO of Trellix Public Sector, emphasized the need for additional security measures, especially in highly regulated industries like defense and intelligence. He warned of potential exploit scenarios, advising organizations to implement encryption protocols, manual data controls, and comprehensive auditing practices to minimize risks.
As concerns persist, Microsoft has yet to respond to requests for additional information. Despite the improvements, the ongoing scrutiny signals the importance of continued vigilance in addressing potential vulnerabilities in the Recall feature.
In conclusion, the rollout of Recall represents a step forward in enhancing user productivity, but the lingering concerns around security and privacy underscore the need for continuous assessment and improvement in safeguarding user data.