Microsoft defends controversial Windows 11 Recall feature – but in a feeble, unconvincing manner

Windows 11’s Recall feature – set to be a cornerstone ability for Copilot+ PCs, allowing for a supercharged AI-powered search of the activity history of the system – continues to stir controversy, and Microsoft’s recent defense of the functionality won’t likely soothe the nerves of anyone.

Or at least that’s our feeling following The Register picking up on comments that came from Jaime Teevan, chief scientist and technical fellow at Microsoft Research, in an interview at an AI conference with Erik Brynjolfsson, director of the Stanford Digital Economy Lab.

Brynjolfsson observed that after Recall was revealed by Microsoft, there was a “backlash against all the privacy challenges around that.”

To recap briefly, in case you missed the concerns flying around about this feature, it sits in Windows 11 and takes regular screenshots of everything you’re doing. Those grabs can be searched by AI at a later date, so you can find out all manner of useful info – and there’s no doubting it’s useful.

The worry is that Recall represents a double-edged sword, with the convenience of a super-powerful search of all your PC usage history on one side, and the specter of all that data falling into the hands of a hacker on the other. To say there are lots of security and privacy concerns with how the AI feature is implemented would be a massive understatement.

Brynjolfsson then encouraged Teevan to address these issues, saying: “So, talk about both the pluses and minuses of using all that data and some of the risks that creates and also some of the opportunities.”

A balanced question, but Teevan elected to ignore the ‘minuses’ part of the equation entirely, and talk only in vague and evasive terms. She said: “Yeah, and so it’s a great question, Erik. This has come up throughout the morning as well – the importance of data. And this AI revolution that we’re in right now is really changing the way we understand data.”

She moved on to talk about businesses using data, before addressing the consumer angle as follows: “And as individuals too, we have important data, the data that we interact with all the time, and there’s an opportunity to start thinking about how to do that and to start thinking about what it means to be able to capture and use that. But of course we are rethinking what data means and how we use it, how we value it, how it gets used.”

A waffly and not very helpful response, frankly.

Undeterred, Brynjolfsson tried a specific angle to try and draw Microsoft Research’s chief scientist to actually comment meaningfully on all the concerns raised around Recall.

He asked: “Is it stored locally? [meaning the Recall data] So suppose I activate Recall, and I don’t know if I can, but when you have something like that available, I would be worried about all my personal files going up into the cloud, Microsoft, or whatever. Do you have it kept locally?”

It’s an easy reply in this case, though, as Microsoft has already made it clear that the data is only stored locally.

Teevan indicated that’s the case again: “Yeah, yeah, so this is a foundational thing that we as a company care a lot about is actually the protection of data. So Recall is a feature which captures information. It’s a local Windows functionality, nothing goes into the cloud, everything’s stored locally.”

Man using a laptop in office

(Image credit: Unsplash / Anthony Riera)

Analysis: Never mind thinking, we need some action

Obviously, that’s good to hear, but as noted, we’ve heard it before. And sadly, that was your lot. Tougher questions weren’t raised, and Teevan certainly didn’t take any opportunity to proactively tackle some of the flak fired at Recall in recent times.

The message, vague as it was, consisted of ‘thinking’ about how we capture and use data, but with Recall about to launch in Copilot+ PCs later this month, it’s a bit late to still be thinking. Isn’t it? These devices are on the cusp of release, and Recall will be used in a very real way across some (or many) of these new machines, with some of the mentioned worries around how it could go wrong also being very real.

As The Register points out, some folks are fretting about legal implications – that lawyers could leverage Recall data on a PC against someone (possibly accessing all kinds of past messaging, even those that are of the auto-delete-after-reading variety). A privacy watchdog is already investigating the feature before its release. And security experts are throwing red flags left, right and center frankly, with some major worrying underway about how Recall could make it a breeze for hackers to steal a ton of sensitive data, apparently very easily and quickly, if your PC is unfortunately compromised.

Aside from all this, our main beef is with the setup of a Copilot+ PC and how it falls short with Recall. The method of running the feature past a Windows 11 user during setup feels clunky, and like it’s crafted to allow for people to leave it on by default, more than likely (if they don’t understand what’s being asked of them, which may be the case with less tech-savvy users).

There are lots of questions here, and Microsoft is failing to address them as far as we’ve seen. ‘It’s all kept local and everything will be fine’ is glossing over myriad issues here.

While at this point, it seems unlikely that the Recall data tanker can change course meaningfully – we’re that close to launch – we can hope that at the very least, Microsoft deals with the issues around setup. This needs to be far more transparent, and Recall needs to be off in our opinion, by default, unless a Copilot+ PC user makes a fully informed decision to turn it on.

The way the feature’s setup is dealt with right now just isn’t good enough, and that’s a failing underpinning all the other concerns here – a root problem that needs to be tackled, and hopefully will be. Fingers firmly crossed. We've contacted Microsoft for a comment.

You might also like…

TechRadar – All the latest technology news

Read More

Windows 11’s AI Recall feature is blasted by a security expert as ‘one of the most ridiculous security failings I’ve ever seen’

Microsoft has already been dragged over the coals regarding its Recall functionality inbound for Windows 11 by security researchers and privacy watchdogs alike – and it’ll need a flame-retardant suit for the latest fiery outpouring against the AI-powered feature.

This comes from security expert Kevin Beaumont, as highlighted by The Verge. The site notes that Beaumont worked for Microsoft briefly a few years ago.

To recap – in case you missed it somehow – Recall is an AI feature for Copilot+ PCs, which launches later this month and acts as a photographic timeline – essentially a history of everything you’ve done on your PC, recorded via screenshots that are taken regularly in the background of Windows 11.

Beaumont got Recall working on a normal (non-Copilot+) PC – which can be done, though it isn’t recommended performance-wise – and has been messing around with it for a week.

He’s come to the conclusion that Microsoft has made a giant mistake here, at least going by the feature as currently implemented – and it’s about to ship, of course. Indeed, Beaumont asserts that Microsoft is “probably going to set fire to the entire Copilot brand due to how poorly this has been implemented and rolled out,” no less.

So, what’s the big problem? Well, principally, it’s the lack of thought around security and how there’s a major discrepancy between Microsoft’s description of the way Recall is apparently kept watertight and what Beaumont has found.

See more

As you can see in the above post on X (formerly Twitter), one of the security expert’s main beef with Microsoft is that it informed media outlets that a hacker can’t possibly nab Copilot+ Recall data remotely. In other words, an attacker would need to access the device physically, in-person – and this isn’t true.

In a long blog post on this topic, Beaumont explains: “This is wrong. Data can be accessed remotely.” Note that Recall does work entirely locally, as Microsoft said – it’s just that it isn’t impossible to tap into the data remotely, as suggested (if you can access the PC, of course).

As Beaumont elaborates, the other big problem here is the Recall database itself, which contains all the data from those screenshots and the history of your PC usage – as all of this is stored in plain text (in an SQLite database).

This makes it very easy to snaffle all the Recall-related info of exactly how you’ve been using your Windows 11 PC – assuming an attacker can get access to the device (either remotely, or in-person).


Analysis: Recall the Recall feature, or regret it

There are lots of further concerns here, too. As Microsoft pointed out when it revealed Recall, there are no limits to what can be captured in the AI-powered history of the activity on your PC (save for some slight exceptions, like Microsoft Edge’s private browsing mode – but not Chrome Incognito, tellingly).

Sensitive financial info, for example, won’t be excluded, and Beaumont further points out that auto-deleting messages in messaging apps will be screenshotted, too, so they could be accessed via a stolen Recall database. Indeed, any message you delete from the likes of WhatsApp, Signal, or whatever could be read via a Recall compromise.

But wait a minute, you might be thinking – if your PC is remotely accessed by a hacker, aren’t you in deep trouble anyway? Well, yes, that’s true – it’s not like these Recall details can be accessed unless your PC is actively exploited (though part of Beaumont’s problem is Microsoft’s apparently errant statement that any kind of remote access to Recall data wasn’t possible at all, as mentioned above).

Hacker

(Image credit: Milan_Jovic)

The real kicker here is that if someone does access your PC, Recall seemingly makes it very easy for that attacker to grab all these potentially hugely sensitive details about your usage history.

While info stealer Trojans already exist and scrape victims at a large scale on an ongoing basis, Recall could enable this kind of personal data hoovering to be done ridiculously quickly and easily.

This is the crux of the criticism, as Beaumont explains it: “Recall enables threat actors to automate scraping everything you’ve ever looked at within seconds. During testing this with an off the shelf infostealer, I used Microsoft Defender for Endpoint – which detected the off the shelve infostealer – but by the time the automated remediation kicked in (which took over ten minutes) my Recall data was already long gone.”

This is a major part of the reason why Beaumont calls Recall “one of the most ridiculous security failings I’ve ever seen.”

If Microsoft doesn’t take action before it ships, mind – as there’s still time, in theory anyway, although the release of Copilot+ PCs is very close now. (However, Recall could still be kicked temporarily to touch while it’s further worked on – perhaps).

If Recall does ship as it’s currently implemented, Beaumont advises turning it off: “Also to be super clear you can disable this in Settings when it ships, and I highly recommend you do unless they rework the feature and experience.”

Herein lies another thorny issue: the AI-powered functionality is on by default. Recall is highlighted during the Copilot+ PC setup experience, and you can switch it off, but the way this is implemented means you have to tick a box to enter settings post-setup, and then turn off Recall there – otherwise, it will simply be left on. And some Windows 11 users will likely fall into the trap of not understanding what the tick box option means during setup and just end up with Recall on by default.

This is not the way a feature like this should operate – particularly given the privacy concerns highlighted here – and we’ve made our feelings on this quite clear before. Anything with wide-ranging abilities like Recall should be off by default, surely – or users should have a very clear choice presented to them during setup. Not some kind of weird ‘tick this box, jump through this hoop later’ kind of shenanigans.

You might also like…

TechRadar – All the latest technology news

Read More

Windows 11 update introduces a long-awaited feature – alongside something else that might not go down so well

Microsoft has rolled out an optional update for Windows 11, KB5037853, that will let you try an array of new features which includes support for drag-and-drop functionality in File Explorer’s address bar. The arrival of the latter ability has been long-awaited by some folks, so there’ll be some pleased Windows 11 users out there today.

If you’re one of those keen to try this – or any of the other features packed into KB5037853 – you can now download and install this preview update. As it’s an optional update, it won’t be downloaded automatically, and you’ll have to click ‘Download & Install’ in Windows Update (in the Settings app) to kick off the installation process. 

Apparently this optional patch is a pretty sizeable update, and along with the revamped File Explorer, it also introduces an ‘Account Manager’ for the Start menu. When you’re in Windows 11 signed into your Microsoft account, the latter will appear to highlight account benefits and make it easier to manage settings, Microsoft explains – though some may regard this as unnecessary clutter.

It sounds suspiciously like treading that thin line between ‘help’ and ‘advertising’ that Microsoft has been prone to err on the wrong side of lately.

Person using a laptop in a coffeeshop

(Image credit: Shutterstock)

File this one under 'finally'…

The drag-and-drop feature for File Explorer has been introduced before and pulled back due to buggy performance, and then introduced for gradual rollout and testing again, so it’s great to see it finally about to arrive (barring any last-minute disaster).

The feature lets users drag a file into File Explorer’s address bar (at the top) to move it to a new location. It’s a simple feature and convenient shortcut that a fair few people are looking forward to seeing, and indeed they are likely wondering why this basic functionality wasn’t present in Windows 11 in the first place.

In this update, Microsoft has also addressed a problem with File Explorer where it could take as long as two minutes to open if you pinned a specific folder to Quick Access that happened to be shared on a network. 

At any rate, we can hope the drag-and-drop feature is here to stay in File Explorer, and Microsoft is considering making more changes like this that make users happy. Adding more AI features that don’t necessarily improve the core functionality of Windows 11, and pushing ads in as many parts of the operating system as possible, are moves that are turning some people off Windows 11 – so it’s good to see Microsoft focus on improving the core Windows user experience here (that more dubious Start menu addition aside).

If you don’t want to download an optional update – as it may have problems, because it’s still in testing, after all – then you can simply wait for the  June 2024 Patch Tuesday update, which should contain all these changes, but with any wrinkles ironed out (in theory anyway).

Via Windows Latest

YOU MIGHT ALSO LIKE…

TechRadar – All the latest technology news

Read More

Truecaller’s new feature can turn your voice into a personal secretary

Caller ID service Truecaller is giving users the ability to create a digital assistant that has their voice and can respond on their behalf. If you’re unfamiliar with the app, Truecaller launched its AI Assistant feature in 2022 to screen phone calls and take messages, among other things. Up to this point, it utilized pre-made voices, but thanks to the power of Microsoft’s Azure AI Speech, you can now use your own.

Setting up your voice within Trucaller is quite easy; you just need a subscription to Truecaller Premium, which is $ 9.99 a month per account. Once that is set, the software will immediately ask you to select an AI assistant – but instead of picking one of the pre-made personalities, select “Add your Voice.”

You’ll then be asked to read a consent sentence and a brief training script out loud into your smartphone’s microphone. Doing so ensures the AI has a voice that mimics your “speaking style.” When done, Truecaller states that Microsoft’s Azure Custom Voice begins to process the recording to create a “high-quality digital replica.” The app will give you a demo sound bite to help you imagine what it’ll sound like when someone calls you. 

Truecaller's training script

(Image credit: Truecaller)

Robo-voice

Keep in mind the technology isn’t perfect. While the digital assistant may sound like you, it does come across as rather robotic. The company published a YouTube video on its official channel showing what the AI sounds like. Admittedly, the software does a decent job at mimicking a person’s vocal inflections; however, responses still sound stiff. That said, it is an interesting and interactive way to screen calls as they come in, especially when stopping spam ones. 

Keep an eye out for the patch when it arrives, as we tried to create our own digital secretary on our Android but couldn’t since we didn’t receive the feature as of yet. It’s unknown exactly when and where the update will be available. TechCrunch claims the tool will roll out “over the next few weeks” as a public beta across a small selection of countries. These include, but are not limited to, the US, Canada, Australia, and Sweden. Soon after, it’ll become widely available “to all users in the eligible markets. 

We also reached out to Truecaller with a couple of questions, including how recordings are stored, whether they are saved on the device or uploaded to company servers, and more. If we hear back, this story will be updated.

While we have you, check out TechRadar's round up of the best encrypted messaging apps on Android for 2024.

You might also like

TechRadar – All the latest technology news

Read More

Windows 11’s Recall feature is already running on unsupported CPUs – and it shows why this is a bad idea

Windows 11 enthusiasts are already playing with the new – and controversialRecall feature the OS now has in preview (for 24H2), and have got it running on current Arm-based CPUs by fudging things.

While Recall is present in the recently released preview of the Windows 11 24H2 update, Microsoft makes it clear that the feature won’t work on current PCs, as it requires a Copilot+ PC (the new name for the ‘AI PC’).

In other words, Recall needs a device with a powerful enough NPU to run it (and other new AI features in 24H2), which is currently only the new Snapdragon X chips (and AMD plus Intel CPUs further down the line).

Even those Snapdragon laptops aren’t available just yet (they will be next month), but leaker Albacore has still managed to tinker under the hood of Windows 11 24H2 and get Recall working on a current Arm processor.

See more

You can see a video of Recall being summoned on a standard (non-Copilot+) Windows 11 PC in the above post on X (formerly Twitter). As Albacore says, it shows ‘screenray’ in action which refers to the context-sensitive mode entered when you find something using Recall and select it.

As you can see, if the search result you want is a text file, screenray presents options pertaining to what you’ll need to do – copy and paste text. Or if it’s an image, you’ll get choices to copy the picture or open it for editing in an app.


Analysis: Working as not intended

It’s pretty cool to see this feature working on a processor without the necessary strength in terms of a powerful NPU (like the new Snapdragon X silicon sports), but at the same time, it illustrates why that NPU is needed. As you probably noticed, the interaction with Recall and screenray therein looks a bit laggy here – what the NPU does is provide specific AI acceleration to ensure this process runs more smoothly.

Furthermore, the feature is still in testing within a preview build here, and that won’t help either.

Albacore even sounds hopeful about getting Recall working not just on current ARM chips, but also on existing AMD and Intel (x86) CPUs, which also can’t officially run the feature. (Again, even current-gen processors from Teams Red and Blue lack an NPU with enough raw grunt).

If that happens, we can expect a similar experience to what we see here – but it’s not possible yet anyway, as Microsoft has only provided the machine learning model bundles for Arm to laptop makers. These don’t exist for AMD or Intel CPUs yet (as there’s no need for them – Lunar Lake and Strix Point, which will drive Copilot+ PCs, are still some way off launching, but they are fully expected to debut before 2024 is out).

Ultimately, this is an interesting fudge for now, but it’s likely a bad idea to be trying to get Recall up and running on a PC it’s not intended for. Simply because there may well be scenarios where it truly bogs down – such as when you have a larger, sprawling library of snapshots piled up – and there are doubtless good reasons why Microsoft has the mentioned NPU requirement in place.

Mind you, not everyone wants Recall, anyhow: certainly not those more privacy-conscious Windows 11 users out there who have already made their feelings clear. Indeed, a privacy watchdog in the UK is already investigating Recall before Microsoft even has the functionality officially live. The result of that enquiry will certainly be interesting, and Microsoft may be worried about another scenario where a big Windows 11 feature is blocked in Europe due to more stringent data regulations.

You might also like…

TechRadar – All the latest technology news

Read More

Windows 11 and Android users will finally get a feature iPhone users have had for ages – the easy copying of text from phone photos over to a PC

A Microsoft Phone Link update may be in the works to make exchanging text between your phone and your PC a lot easier. In short, you’ll be able to select text in photos synced from your Android phone. 

Phone Link is an app on your PC (also called Link to Windows on your phone) that allows you to sync your calls, messages, notifications, and images from your Android device onto your PC. It’s similar to how you’re able to sync much of your iPhone and its apps to your MacBook, so you can respond to messages and access photos you might need without having to pick up your phone. 

The feature will use optical character recognition (OCR) to spot text within images and highlight them, so you’ll be able to copy the text over to a word processor, email, or text box. This is great news for those of us who hate having to type out important details and are looking for a simpler procedure. Unfortunately, the feature is currently only available through Microsoft’s preview channel. 

Windows Central gave the new feature a go and showcased a simple layout within Phone Link that highlights all the available text in the image, with the option to copy the text to your clipboard in Windows. If you feel like this all sounds familiar, you may remember Microsoft actually started testing this feature out in the Snipping Tool, where your transferred photo would open in the app rather than with Phone Link. 

Welcome to the club 

Apple users like myself may be tempted to turn their noses up at an update like this, but overall it’s still a beneficial change that I’m sure will benefit a lot of people. However, from what we can tell the OCR isn’t 100% accurate, so you will have to double-check the pasted text before you send it off. 

If you’re just looking to paste written notes or basic information, the new feature will probably work just fine for you, however, if you want to paste over longer or more important blocks of text, using cross-device copy and paste may be better (assuming the text isn’t solely confined to an image file). 

So far, the feature is still locked behind the Windows Insider Preview Build, Microsoft’s hub for testing potential new features and changes. While we normally say that we have to take the Preview Build changes with a pinch of salt (not all features make a wide release) we’re fairly confident that this Phone Link update will come to fruition. 

If you want to try it out yourself, you’ll have to make sure you’re part of the Insider Preview Build channel (which is free to join), where you’ll be able to not only play around with the new Phone Link update but also see other features Microsoft has in the works. 

You might also like…

TechRadar – All the latest technology news

Read More

Windows 11’s AI-powered feature to make games run more smoothly is for Copilot+ PCs only, we’re afraid

Windows 11 is getting a trick to help the best PC games run more smoothly, although this previously rumored feature comes with a catch – namely that it will only be available to those who have a Copilot+ PC with a Snapdragon X Elite processor.

The feature in question, which was leaked in preview builds of Windows 11 earlier this year, is called Auto Super Resolution (or Auto SR), and the idea is that it automatically upscales the resolution of a game (or indeed app) in real-time.

An upscaling feature like this effectively means the game – and it seems gaming is very much the focus (we’ll come back to that) – is run at a certain (lower) resolution, with the image upscaled to a higher resolution.

This means that something running at, say, 720p, can be upscaled to 1080p or Full HD resolution, and look nearly as good as native 1080p – but it can be rendered faster (because it’s really still 720p). If this sounds familiar, it’s because there are similar solutions already out there, such as Nvidia DLSS, AMD FSR, and Intel XeSS to name a few.

As outlined by Microsoft in its fresh details about Copilot+ PCs (highlighted by VideoCardz), the catch is that Auto SR is exclusive to these laptops. In fact, you need to be running the Qualcomm Snapdragon X Elite, so the lesser Plus version of this CPU is ruled out (for now anyway).

The other caveat to bear in mind here is that to begin with this is just for a “curated set of games,” so it’ll have a rather limited scope initially.


Analysis: The start of a long upscaling journey

When it was just a leak, there was some debate about whether Auto SR might be a feature for upscaling anything – games or apps – but Microsoft specifically talks about PC games here, and so that’s the intended use in the main. We also expected it to be some kind of all-encompassing tech in terms of game support, and that clearly isn’t the case.

Eventually, though, we’d think Auto SR will have a much broader rollout, and maybe that’ll happen before too long. After all, AI is being pushed heavily as helping gamers too – as a kind of gaming Copilot – so this is another string to that bow, and an important one we can imagine Microsoft working hard on.

Of course, the real fly in the ointment is the requirement for a Snapdragon X Elite chip, which rules out most PCs, of course. This is likely due to the demanding nature of the task, and the feature being built around the presence of a beefy NPU (Neural Processing Unit) to accelerate the AI workloads involved. Only Qualcomm’s new Snapdragon X has a peppy enough NPU to deal with this, or that’s what we can assume – but this won’t be the case for long.

Newer laptop chips from Intel, such as Lunar Lake (and Arrow Lake), and AMD’s Strix Point are inbound for later this year, and will deliver the goods in terms of the NPU and qualifying as the engine for a Copilot+ PC – and therefore being able to run Auto SR.

Naturally, we still need to see how well Microsoft implements this feature, and how upscaling games leveraging a powerful NPU works out. But as mentioned, the company has so much riding on AI, and the gaming side of the equation appears to be important enough, that we’d expect Microsoft will be trying its best to impress.

You might also like…

TechRadar – All the latest technology news

Read More

Microsoft’s controversial Recall feature for Windows 11 could already be in legal hot water

Microsoft’s announcements around Build 2024 have certainly grabbed some attention, but none more so on the controversy front than the AI-powered ‘Recall’ feature in Windows 11

Recall has been stirring up strong opinions left, right and center since its revelation, and now it appears to be under the microscope of the ICO, a UK-based privacy watchdog.

The worries expressed widely online are focused on how this feature may affect privacy for those who have it, which won’t be all Windows 11 users, we should note – just Copilot+ PC owners who have the necessary hardware goods in terms of a powerful NPU.

For those who missed it, what Recall does is record your PC usage, very literally in terms of taking screenshots of your active windows every couple of seconds. This then allow you to exercise powerful natural language-based search capabilities to rifle through your past PC usage, not just in terms of text but also visual search – with AI locating what you need by going through that huge library of screen grabs.

You can doubtless see the kind of privacy concerns that might be sparked by this constant stream of screenshots going on in the background, but the pushback and reaction has got serious very quickly.

Sky News spotted that in the UK, the Information Commissioner’s Office (ICO), which oversees data privacy and related regulations, is already cautious about the Recall capability.

Indeed, following all the uproar around Recall, the ICO is investigating the feature, and told Sky: “We are making enquiries with Microsoft to understand the safeguards in place to protect user privacy.”

A laptop with a security lock displayed

(Image credit: iStock)

Safety first

It’s a good question, of course – so what safeguards are in place here to protect Windows 11 users?

For starters, Recall happens locally, so everything is stored on the PC, and nothing is sent online to the cloud or Microsoft’s servers – so there’s no risk of having data intercepted (or a third-party data breach leaking the private details of how you use your Windows 11 machine).

Microsoft has underlined that it doesn’t have access to any of this data, and it won’t be used to train its AI.

Furthermore, the company pointed out that you can manually delete snapshots, or adjust the timeframe they’re kept for – or pause, or turn off Recall entirely if you don’t want it. It’s also possible to block certain apps or websites from being used by Recall, so effectively there’s a lot of fine-grained control here.

However, will Windows 11 users be bothered to exercise that control and properly set up Recall? Well, that’s one worry, and another is that while it’s all well and good to say everything stays on the device, we have to firstly trust that’s the case – and it’s all watertight – and secondly, what if your PC is compromised by malware, or stolen. Then what?

Hackers or thieves could potentially have access to your Recall library of screenshots, which may contain confidential information, openly available to see, such as your bank or card details, or visible passwords, or, well, anything that has happened on your PC (that you haven’t marked out of bounds using Windows 11’s settings for Recall).

As Muhammad Yahya Patel, who is lead security engineer at Check Point, put it: “It is a one-shot attack for criminals, like a grab and go, but with Recall they will essentially have everything in a single location [your screenshot database] … Imagine the goldmine of information that will be stored on a machine, and what threat actors can do with it.”

Unhappy laptop user

(Image credit: Shutterstock)

More questions than answers?

So, there are definitely still some major concerns and question marks here, and it’s going to be pretty interesting to see what the ICO makes of Microsoft’s big AI play for Windows 11 to supercharge search.

We’ve already discussed other thorny areas around Recall – such as Windows 11 Home users apparently not benefiting from encryption for the data used by the feature, and what type of encryption is in place for Windows 11 Pro (or business) users anyway?

In that article, we also go over the precautions you can take to make Recall as secure as possible, but really, the best bet for the paranoid might be – simply turn it off and don’t use it. And maybe Microsoft wonders what all the fuss is about from naysayers, and why they don’t just take that approach.

But for the less tech-savvy, who might not even realize what Recall is, or that it’s turned on by default, it could be a risky feature – particularly considering these are the people who are most prone to getting hit by malware or hacked.

With that in mind, shouldn’t the first sensible security step be to have Recall off by default? So that it’s only turned on by those who know what it’s for, and want it? Let’s see what the ICO makes of Microsoft’s ‘default on’ approach, too.

You might also like…

TechRadar – All the latest technology news

Read More

Microsoft reveals AI-powered ‘Recall’ feature to transform Windows 11’s searchability, while confirming hardware requirements

Microsoft’s annual developer conference, Build, has only just kicked off but we’ve already learned lots of exciting things, including the company showing off a new AI-powered ‘Recall’ feature to be integrated into Copilot+ PCs with Windows 11.

Copilot+ is a new software platform that was introduced yesterday, aiming to infuse Windows 11 with new AI features, ushering in a raft of new devices with more advanced AI functionality.

You’ve doubtless already heard of AI PCs, but the new breed of portables, which are powered by Qualcomm’s Snapdragon X chips with an integrated Neural Processing Unit (NPU), were officially debuted yesterday. Windows 11 Recall will be exclusive to PCs that have Snapdragon X processors as the current generation of Intel and AMD mobile CPUs don’t have a powerful enough NPU to deal with the feature. (It needs an NPU capable of 40 TOPS, or trillions of operations per second). 

This isn’t the only hardware requirement that the Recall feature will necessitate, with the full spec requirements being as follows:

  • Snapdragon X Elite or X Plus processor
  • NPU capable of 40 TOPs
  • 225GB storage
  • 16GB RAM

While these new Qualcomm chips are the only mobile silicon that can drive the Recall feature (and other AI capabilities in Copilot+ PCs) right now, future generations of Intel and AMD processors will be on board (Intel’s Lunar Lake for example, or AMD’s Strix Point chips).

Windows Latest notes that the above hardware requirements are not only needed to ensure a quality experience – with enough performance to drive snappy responses with these AI features such as Recall – but also for data security reasons.

Microsoft unveils new Surface Laptop and Surface Pro on a stage

(Image credit: Future / John Loeffler)

So, how does Recall work? 

In the past we’ve seen reports of a rumored feature, often referred to as ‘AI Explorer,’ that would enable you to search through your past activity on your PC. It looks like this has manifested as the Recall feature, and it’ll be privy to all the activity on your PC including what apps you use, how you use those apps, and what you do in them (for example, conversations in WhatsApp). Recall will record all of this activity going forward, saving snapshots of it in your PC’s local storage. 

Additionally, the Settings app will have a dedicated update history section for Recall, and a toggle for new Privacy and Security settings. You’ll be able to update Recall for Windows 11 and other AI features besides using the Windows Update app. 

If you’re feeling wary about allowing Recall to access everything, and concerned about having control over what it records and stores, Windows Latest reports that you’ll be able to delete snapshots manually from Recall’s storage, and set Recall to exclude certain apps and websites from its recording activity. In your device’s Settings, you’ll also be able to adjust the time ranges over which Recall stores snapshots, or indeed pause Recall altogether by clicking on its icon in your Taskbar. 

In practice, Recall is designed to help you go back in time and find elements of your past activity. So for example, if you previously had a conversation with a colleague on a certain topic, but couldn’t remember the details, you could ask Recall to go and find it within Windows 11.  Recall would then comb over your past conversations with the colleague, searching across all of your apps, open tabs within apps, and more besides.

Recall will also be able to help you find files you’ve lost, and to search your browser history, and so forth. You’ll be able to ask for Recall’s assistance using natural language, the way we converse with one another in real life, instead of having to use precise commands. 

All of this will run natively on your PC and won’t have to tap the cloud for computing power, meaning your data will be more secure, as everything can be kept locally, and nothing is sent to an external data center. It’s all happening right there on your Copilot+ PC with the help of that powerful NPU.

Microsoft presenting Surface Laptop and Surface Pro devices.

(Image credit: Microsoft)

When can you try Recall for yourself? 

The hubbub and excitement of Recall is just one of many things that have been revealed at Microsoft Build 2024 already, but you’ll have to wait until the Windows 11 24H2 update to try the feature (and don’t forget, you’ll need a PC that meets the hardware requirements). The 24H2 update is expected to arrive in September or October, or thereabouts.

If Recall and other AI features, deliver on all that’s promised (or even most of it), we think many people will be impressed and it could convince them to try to adapt to the new way of computing that Microsoft is trying to usher in.

Right now, Copilot isn’t regarded as particularly impressive, but in some ways, that’s due to the hardware needed to facilitate Microsoft’s plans for its AI assistant not being available – until now. We’re excited to get our hands on all these new AI features, as we’re one of those people that floods our PC with media – and we’d imagine Recall could be very handy for us indeed.

YOU MIGHT ALSO LIKE…

TechRadar – All the latest technology news

Read More

Windows 11 could get a shiny new feature to share files and links with QR codes, because apparently copy and paste is so last year

Windows 11’s Share menu is getting a new feature – the ability to share links as QR codes that a smartphone or other suitable device can scan (you can check out our guides on how to scan QR codes with an iPhone or with an Android).

The Share menu isn’t the most widely used, especially outside of Microsoft’s own apps and services, but Microsoft looks like it’s hoping to boost its popularity by making the sharing of web pages more seamless, especially across different devices. 

This feature is part of a new preview version, Windows 11 build 26212, available to Windows Insiders through the Canary Channel. The build saw the introduction of a button that generates a QR code within the Share menu dialog box, which will apply to Microsoft Edge and other supported apps. People can generate QR codes for URL addresses and cloud files in the Windows 11 Share menu, which is opened in most apps by clicking the share button in the app’s toolbar.

Once you have the preview build installed and you follow the process to generate a QR code, you can then open the Camera app or dedicated QR scanner on your device, and hold it up to the screen. 

A man holding a smartphone and pointing his finger

(Image credit: Shutterstock/pongsuk sapukdee)

More about the new Share window

Writing in a blog post publicizing the development, Microsoft explains that the Share menu will not close if you accidentally (or deliberately) click outside of it. To close it, you’ll have to click the close button in the top right corner.

There’s also an added provision if you use your Gmail address for your Microsoft Account: you can send yourself an email from the share window and receive it in your Gmail inbox (instead of just Outlook/Hotmail accounts).

A similar process already exists in Windows 11 for people who have Phone Link set up on multiple devices. These users can send a link via the Share menu, but this development makes it even easier to share things across devices as you don’t have to log in or set up anything after installing the preview build. 

We’ll have to see if this makes the Share menu more popular with users, as most people are used to the clipboard functions in Windows for moving information from one place to another, or they just save the data to the device they’re currently using to retrieve when they need it.

This development isn’t a dramatically big change, which means it can be easy to adopt, but also easy to miss. It’s also still in the testing stage, so we’ll have to wait and see if and when Microsoft chooses to fully adopt it in a future Windows 11 update.

YOU MIGHT ALSO LIKE…

TechRadar – All the latest technology news

Read More