Windows Recall was supposed to make searching your PC history easier, but a new proof of concept puts new pressure on that promise.
TotalRecall Reloaded shows how information collected by the Windows 11 feature can still be intercepted after login, even after Microsoft overhauled its protections following backlash last year.
The recall does not capture a small portion of the activity. It can store a comprehensive visual record of what happens on your PC, including apps, websites, messages and other screen content.
Microsoft switched the feature to opt-in use and added encryption plus Windows Hello protection. However, the latest findings suggest that the weak point occurs after the service is unblocked and starts passing information to another system process.
The weaker link could lie elsewhere
The latest claim is that the database itself is no longer the easiest place for attacks. Instead, the disclosure begins after someone authenticates with Windows Hello and the system begins sending screenshots, extracted text, and metadata to a separate process called AIXHost.exe.
TotalRecall Reloaded reportedly injects code into this process without administrative privileges and then waits for the session to open and the information to begin transferring.
Some actions, including getting the latest screenshot, collecting selected metadata, and deleting the entire archive, can be done without Windows Hello authentication.
Microsoft sees it differently
Microsoft told Ars Technica that the behavior exhibited by the researcher was consistent with intended protections and existing controls and that it did not constitute a circumvention of security boundaries or unauthorized access.
The findings were sent to Microsoft’s Security Response Center on March 6 and were classified by the company as not having a vulnerability on April 3.
This reaction is unlikely to calm nerves. Anyone who can access your PC and use your Windows Hello fallback PIN can still access a detailed archive of emails, browsing activity, messages, and other personal traces.
Why the trust problem persists
Recall has already come under scrutiny for its ability to record so much of what happens on a PC, and this report gives critics another reason to remain skeptical, even as Microsoft says the behavior is working as designed.
Signal, Brave and AdGuard have already taken steps to keep their content off Recall by default, showing that the concern extends beyond security researchers.
This insight is practical for Windows 11 users. If you don’t need Recall, it’s still safer to leave it out. If you want it, consider it a convenience feature with real privacy compromises and see if more apps start opting out next.
