Microsoft’s Recall Feature: A Double-Edged Sword
Introduction to Recall
Microsoft’s CEO âSatya⢠Nadella has praised the â¤company’s new Recall feature, describing it âŁas a “photographic memory” for your PC. This⢠tool captures⢠a screenshot of your â¤desktop every five seconds, which has been both lauded and criticized withinâ the cybersecurity community.
Security Concerns
On Wednesday, James Forshaw, âa researcher with Google’s Project Zero⢠vulnerability research team, published findings âthat show how someone with access to a victim’s machine could easily siphon⣠out all the user’s history recorded by Recall. Forshaw’s technique⢠does not require â¤any privilege âescalation, making it a â¤significant security risk.
âYou donât need any privilege escalation, no pop-up, nothing,â says Hagenah. âThis would make sense to implement in the tool for a bad guy.â
Immediate Exploitation
Just an hour after discussing Forshaw’s findings, Hagenah added the simpler of Forshaw’s techniques to his TotalRecall tool.⣠He confirmed that the trick worked by accessing all â¤the Recall history dataâ stored on another âuser’s machine without needing administrator access. âSo simple and genius,â⤠he wrote in a text after testing the technique.
Implications for Users
This confirmation removes one of the last defenses⤠Recall’s supporters had against âcriticisms that the feature acts as pre-installed spyware. âIt makes âŁyour security â¤very fragile, in the sense that anyone who penetrates â¤your computer for even a second⣠can get yourâ whole history,â says Dave Aitel, the founder of the cybersecurity firm Immunity and a former NSA âhacker. âWhich is notâ something people want.â
Current Status and Future⢠Plans
Security researchers âhave been testing Recall in preview versions ahead of its expected launch later this month. Microsoft plans to integrate Recall on âŁcompatible Copilot+ âPCs⤠with the feature â¤turned on by default. â˘The Zero Byteâ reached âout to Microsoft for comments on âForshaw’s findings, but the company has yetâ to respond.
Conclusion
The revelation that hackers can exploit Recall without using a separate privilege⤠escalation technique adds to the perception â˘that the feature was rushed to market without proper cybersecurity review. Despite Nadella’s assurances, the feature’s security vulnerabilities remain a significant âconcern.
3 Comments
Can’t say I’m surprised by this news!
Typical Microsoftâoverpromising and underdelivering yet again.
How much clearer can it be that we’re not secure even with big tech companies!