"TotalRecall Reloaded" tool finds a side entrance to Windows 11's Recall database

What Happened

Two years ago, Microsoft launched its first wave of “Copilot+” Windows PCs with a handful of exclusive features that could take advantage of the neural processing unit (NPU) hardware being built into newer laptop processors.

Why It Matters

These NPUs could enable AI and machine learning features that could run locally rather than in someone’s cloud, theoretically enhancing security and privacy.

Key Details

  • One of the first Copilot+ features was Recall, a feature that promised to track all your PC usage via screenshot to help you remember your past activity.
  • But as originally implemented, Recall was neither private nor secure; the feature stored its screenshots plus a giant database of all user activity in totally unencrypted files on the user’s disk, making it trivial for anyone with remote or local access to grab days, weeks, or even months of sensitive data, depending on the age of the user’s Recall database.
  • After journalists and security researchers discovered and detailed these flaws, Microsoft delayed the Recall rollout by almost a year and substantially overhauled its security.
  • All locally stored data would now be encrypted and viewable only with Windows Hello authentication; the feature now did a better job detecting and excluding sensitive information, including financial information, from its database; and Recall would be turned off by default, rather than enabled on every PC that supported it.Read full article Comments

Background Context

Two years ago, Microsoft launched its first wave of “Copilot+” Windows PCs with a handful of exclusive features that could take advantage of the neural processing unit (NPU) hardware being built into newer laptop processors. These NPUs could enable AI and machine learning features that could run locally rather than in someone’s cloud, theoretically enhancing security and privacy. One of the first Copilot+ features was Recall, a feature that promised to track all your PC usage via screenshot to help you remember your past activity. But as originally implemented, Recall was neither private nor secure; the feature stored its screenshots plus a giant database of all user activity in totally unen

What To Watch Next

Track official statements, independent verification, and regional impact updates in the next 24 to 48 hours.

Editorial Next Step

Add your local context, fact checks, quotes, and analysis before or after publication.

Source: Ars Technica – All contentOriginal Link

Source: Ars Technica – All content

Related Posts

Artemis II Splashes Down

What HappenedNASA/Bill Ingalls This image from April 10, 2026, captures NASA’s Orion spacecraft. Source: NASA. Read original report via source link.

Leave a Reply