A new tool based on Python, named “Total Recall,” can allegedly copy the database utilized by the Recall feature and extract passwords within seconds.
Microsoft has been promoting the Windows 11 AI-powered Recall feature, but earlier this week, a security researcher with prior experience at the tech giant described it as a “security disaster.”
Video – https://youtu.be/tfgxSM9tomQ
This feature captures screenshots of all user activities on the PC, making past actions searchable. While this might seem beneficial initially, a security expert has revealed that it stores sensitive data, including passwords and card numbers, in an unencrypted SQLite database.
Developer Alexander Hagenah has now released a Python script that copies these databases and screenshots, then parses the database for potentially sensitive artifacts. This implies that cybercriminals could automate the extraction of passwords and other critical information effortlessly.
The tool can search the database for terms like “password” quickly, without breaking any encryption, potentially allowing hackers to steal all your information in seconds.
Video – https://youtu.be/tfgxSM9tomQ
Despite Microsoft’s assurances that Recall data remains private and inaccessible to anyone but the user, several security vulnerabilities have been exposed, allowing unauthorized access to the database. The tech giant also stated that physical access to the machine would be necessary for stealing passwords, but malware could soon evolve to bypass detection methods.
For those unfamiliar, the upcoming Windows 11 Recall feature will be available only on Copilot Plus PCs, which are set to release later this month. However, the same security expert who labeled it a “security disaster” claims to have used it on a PC without an NPU, which Microsoft asserts is necessary for Recall to function.
Video – https://youtu.be/tfgxSM9tomQ
The upcoming Windows 11 Recall feature, designed to make user actions searchable, has been flagged as a major security risk. A new Python tool, “Total Recall,” can exploit this feature to extract sensitive data like passwords in seconds. Despite Microsoft’s claims of data privacy and security, multiple vulnerabilities have been uncovered, highlighting the potential for significant unauthorized access. This underscores the need for heightened security measures before the official launch.
Video – https://youtu.be/tfgxSM9tomQ
