Skip to main content
  1. Home
  2. Computing
  3. News

Windows Recall still has a side door into your private PC history

A new tool targets Recall after you sign in, raising fresh questions for anyone relying on Microsoft's privacy safeguards

By
Add as a preferred source on Google
Text extract with Windows 11 Recall.
Nadeem Sarwar / Digital Trends

Windows Recall was meant to make your PC history easier to search, but a new proof of concept is putting that promise under pressure again.

TotalRecall Reloaded shows how information captured by the Windows 11 feature can still be intercepted after sign in, even after Microsoft overhauled its protections following last year’s backlash.

Recommended Videos

Recall doesn’t capture a narrow slice of activity. It can preserve a broad visual record of what happens on your PC, including apps, websites, messages, and other on screen content.

Microsoft shifted the feature to opt in use and added encryption plus Windows Hello protection, but the latest findings suggest the weaker point comes after the service is unlocked and starts handing information to another system process.

The weaker link may be elsewhere

The latest claim is that the database itself is no longer the easiest place to attack. Instead, the exposure begins after someone authenticates with Windows Hello and the system starts sending screenshots, extracted text, and metadata to a separate process called AIXHost.exe.

Identifying user with Windows 11 Recall.
Nadeem Sarwar / Digital Trends

TotalRecall Reloaded reportedly injects code into that process without administrator privileges, then waits for the session to open and the information to start moving.

Some actions, including pulling the latest screenshot, collecting select metadata, and deleting the full archive, can happen without Windows Hello authentication.

Microsoft sees it differently

Microsoft told Ars Technica that the behavior shown by the researcher fits its intended protections and existing controls, and said it doesn’t amount to a security boundary bypass or unauthorized access.

The findings were sent to Microsoft’s Security Response Center on March 6, and the company classified them as not a vulnerability on April 3.

Taskbar view of Windows 11 Recall.
Nadeem Sarwar / Digital Trends

That response is unlikely to settle nerves. Anyone who can access your PC and use your Windows Hello fallback PIN could still reach a detailed archive of emails, browsing activity, messages, and other personal traces.

Why the trust problem remains

Recall was already under scrutiny because it can record so much of what happens on a PC, and this report gives critics another reason to stay skeptical even if Microsoft says the behavior works as designed.

Signal, Brave, and AdGuard have already taken steps to keep their content out of Recall by default, showing the concern extends beyond security researchers.

For Windows 11 users, the takeaway is practical. If you do not need Recall, leaving it off remains the safer move. If you do want it, treat it as a convenience feature with real privacy tradeoffs attached, and watch whether more apps start opting out next.

Paulo Vargas
Paulo Vargas
News Writer
Paulo Vargas is an English major turned reporter turned technical writer, with a career that has always circled back to…
Topics
Gemini will now take notes for you in Google Meet for you, if you the minimum $20 AI tax
Yet another Google subscription just dropped for Gemini
Google Meet Take Notes for me Gemini

Google has just released a useful Gemini feature, which you can try if you are a paying member of course. The company is now bringing "Take notes for me" for Gemini, which will be available in Google Meet for Google AI Pro and Google AI Ultra subscribers, along with eligible Workspace business customers.

For personal users, the feature starts with Google AI Pro, which costs $19.99 per month in the US. In other words, Gemini can now take your Google Meet notes, provided you pay the minimum AI tax.

Read more
After iPad Pro and MacBook Pro, the iMac could be the next in line for an OLED screen upgrade
iMac with M4

The iPhone got an OLED panel in 2017, while the iPad Pro followed in 2024. Even the MacBook Pro is expected to follow later this year or early next year. But what about the iMac?

According to TrendForce, the iMac could get an OLED upgrade. There's no timeline yet, but the direction is clear. Apple wants to replace its current display technologies with OLED, raising the bar for color quality for both regular users and professionals.

Read more
This $1,299 gaming PC wants to be a Steam Machine without waiting for Valve
Valve’s Steam Machine dream is already real in MetaPC's new prebuilt
MetaPC's Steamroller is a new Steam Machine rival

Valve’s Steam Machine may be the face of SteamOS, but the platform isn't exclusive to it. A big announcement after Steam Machine's unveiling was that SteamOS would be arriving on systems outside of the new hybrid console. Now, MetaPCs is one of the first to take advantage of this by opening the preorders for the Steamroller, a new prebuilt gaming desktop that ships with SteamOS installed by default.

Though Steamroller is not trying to be a tiny console-like cube. It is a normal desktop PC with standard parts and a real upgrade path. The system costs $1,299 and is listed with a preorder date of July 3, 2026.

Read more