Microsoft has faced criticism regarding the security of its Windows Recall feature, prompting the company to announce significant changes to address the concerns raised by security professionals and the public. The feature, which takes screenshots of a computer’s screen every few seconds, was found to have potential security pitfalls, including unencrypted user databases and the default setting being turned on.
In response to the feedback, Microsoft has made Windows Recall optional for users, with the feature now being off by default unless manually enabled. Additionally, the search index database storing screenshot content will now be encrypted, and access to the database will require authentication via Windows Hello Enhanced Sign-in Security.
Users will have control over what is saved by Recall, with the ability to disable saving snapshots, pause them temporarily, filter applications and websites, and delete snapshots at any time. Furthermore, Recall will not capture content from private browsing activities on supported browsers like Microsoft Edge, Firefox, and Google Chrome.
IT administrators will also have the ability to disable Recall on managed work devices, although they will not be able to activate the feature. While these changes are seen as a step in the right direction, questions remain about how such a security oversight could have occurred from a company that prioritizes security.
Security researcher Kevin Beaumont highlighted the need for investigation into the governance and security failures at Microsoft regarding the implementation of Recall. He emphasized the importance of ensuring that Microsoft does not attempt to push users to enable the feature in the future and called for default settings in Group Policy and Intune for enterprise organizations.
The effectiveness of these changes will need to be monitored closely to ensure that user privacy and security are adequately protected. Microsoft’s commitment to addressing the concerns raised by security experts and the public will be tested in the coming months as the updated version of Windows Recall is deployed to customers.