Link: Microsoft faces fresh Windows Recall security concerns

Microsoft's AI-powered Windows feature, Recall, faced significant security and privacy concerns despite a redesign aimed at making it safer. Cybersecurity expert Alexander Hagenah even developed TotalRecall Reloaded, a tool highlighting ongoing vulnerabilities.

The redesigned Recall feature includes a secure data vault and requires Windows Hello authentication for access. Microsoft claims this setup prevents malware from exploiting user authentication to steal data.

However, Hagenah's research suggests that the security measures might not be foolproof. His tool, TotalRecall Reloaded, can activate Recall and extract data post-authentication by exploiting this vulnerability.

Microsoft maintains that the existing protections adequately secure user data and prevent unauthorized access. They dismissed Hagenah's findings, stating that reported access patterns were intended and consistently protected.

Hagenah contests Microsoft's assertions, especially concerning the effectiveness of the timeout mechanisms meant to safeguard against unauthorized data extraction. He believes further improvements are necessary to fully secure Recall against sophisticated attacks.

Despite these concerns, elements of the Recall redesign have been positively acknowledged by Hagenah, particularly the Virtualization-based Security (VBS) enclave. Nevertheless, he criticizes the system for its approach to handling decrypted content, which could still be compromised. #

--

Yoooo, this is a quick note on a link that made me go, WTF? Find all past links here.