Earlier this year, the automatic “photo memory” screenshot feature for Windows 11 Copilot+ computers was delayed due to widespread security flaws. Now that it’s back, some users have found that it’s still not the most secure feature, especially if you want to view your bank account or credit information online.
The reminder feature was first made available to a handful of testers last month, but as of December 6, it became available to anyone with a computer running Copilot+ in the Windows Insider beta. The feature first debuted in May, but security researchers found that access to AI transcription logs for screenshots of images was too easy. The new version of Recall encrypts all of these logs and provides access to the feature by signing in with Windows Hello. The system is also supposed to automatically detect and stop taking screenshots of any “sensitive information,” such as banking data.
However, Avram Pilch of Tom’s Hardware said that the filters do not filter as much as they should. The “filter sensitive information” setting should stop the AI from taking screenshots of any website or document with a credit card number. However, Tom’s Hardware found that it will still take a screenshot of a notepad document that contains this information. He would also take a screenshot of the fake credit application in PDF format. It even took a screenshot of the fake page that Piltch created, including the credit card input line.
That doesn’t mean the filter doesn’t work. Pilch said it refused to take screenshots on two payment sites he tried. In its November 22 blog post, Microsoft said that you can select specific websites that Recall will not take screenshots of. The company added: “If you find sensitive information that should be filtered according to your context, language, or geography, please let us know via the Feedback Hub.”
