- The Windows 11 recall function has just been put to the test
- He did better than when it was published for the first time in preview, but has always made slides with his sensitive information filter
- In some scenarios, this filter simply does not keep vital data – such as credit card numbers – outside the reminder screenshots
The Windows 11 recall function is again examined with a new report stating that, in certain situations, the functionality captures sensitive information as part of its daily tasks (for those with Copilot + PCS that activated it).
As a rapid recycling, recall is the research in natural language fueled in AI which is in depth and regularly works screenshots of the activity on the host PC. Although it was undoubtedly powerful, it has been forced to confidentiality and security since its first revelation (and the launch was a mess, you may remember – AHEM).
And some concerns remain, because a register report clearly shows it – at least in certain scenarios with the screenshots that remember, which could be a “potential treasure for thieves” as the author says, Avram Pitch.
PilTch has done recall tests with a Lenovo Yoga Slim 7x (which is a Copilot +laptop), noting that if the functionality has managed to exclude sensitive financial details – such as credit card numbers – from many screen seizures taken, it did not do it all the time.
Certain reminder failures, which are reported here, include the functionality taking a screenshot of a false web page (created by the author for test purposes) with a credit card entry form, when certain texts (as “payment page” and “enter payment information”) have been deleted. The recall managed to exclude the site of its screenshot activity when these labels were present, but without them, the recall no longer recognized that the details of the card were sensitive information, so it has always taken captures.
As Pilitch points out, not all online cash flow forms are alike, and therefore doubts slips on the question of whether, with certain websites, the recall may not block the details of the card.
The recall also had security points deducted by Pilatch for the combustion of a text file full of user names (compounds) and passwords. If the word “password” was present in the document somewhere, the recall would not take screenshot – but if that was not explicitly mentioned, it would gladly take the sensitive content. (And no, you should absolutely not keep a list of your passwords in a text file, but some people do, unfortunately).
Pitch also noted that when he was examining his online bank account, a reminder took pages’ screenshots where his balance appeared and a list of deposits made. This could be valuable information for a malicious party that has got hold of this recall information, but the functionality blocked the account number (and ABA routing), fortunately.
Regarding the use of Paypal, a reminder took a screenshot of the connection portal, which revealed the username, but not the password. In addition, the functionality has not taken any entry of the account page (displaying recent activities and transactions), which was good, but letting the user name still slide is not great.
Reminder also recognized a photo of a passport and avoided the screenshot. However, when another window on the desk has partially obscured part of the photo, it took a catch, obviously not recognizing it as a passport in this case (even if the sensitive details were always visible).
Analysis: Better – but still not good enough
The defects described here mainly concern the recall which does not recognize sensitive details when they are not clearly reported with a label (such as “payment information”) or is only partially visible (as in the case of the passport).
How much should we remember for this? Well, if I used to remember myself (warning: I don’t do it, and in fact I can’t, because I don’t have a co-pilot + PC), I would be disappointed with the stumbling function on credit card numbers and the passport in particular.
I think that the reminder should be sophisticated enough to recover and recognize that the grouping of card numbers (16 -digit long credit card number, date, CVC) to block this. Ditto for a partial passport photo, I think that the recall should always have faced what it is somewhat obscured, in order to be judged as doing good work in terms of sensitive information filter.
On the other hand, some scenarios – a file full of passwords – are not such a big shift in my books (these words could be really something, and there is not such an obvious model there).
However, there is enough slip in the filter here to worry. The recall, however, is still in a preview officially, and Microsoft itself admits that sensitive information can be missed (and that if this happens, you must refer this to the company, as part of the recall of the tests).
Thus, the long and the short is, the recall is always tested. This improves – Pilatch has actually carried out similar tests for Tom equipment when Note made its debut for public consumption (in preview), and the sensitive data filter has been much worse, but it always has wrinkles as we clearly see here. It is not good enough for me, and therefore even if I had a co -pilot + PC, I would not use it.
In addition, I worry if the recall will never be fully perfected in terms of completely blocking sensitive data, or that it is guaranteed not to be subject to bugs where such Bordeaux could occur. (Windows 11 is well known to never have bugs, of course 😉). And so I can never see myself using the functionality, frankly, because I am not convinced either that I need this research assisted by AI.
You do not need to activate the recall, of course – in fact, it is disabled by default with a co -pilot + PC.
In addition, it should be clearly known that an attacker should access your PC to access these screenshots, which is far from an easy task. However, Pilatch underlines that an attack in person (by someone who knows or guesses, your Hello Windows pin) is possible and that remote access is not completely out of the table either.
It is not particularly comforting if we consider that a filter designed to maintain your safety entirely in such a possibility does not shoot all cylinders.
