"Windows 11's Recall AI, known to take snapshots and recordings of user computers regularly, including key presses, was discovered to store all its information in an unencrypted local folder."
Or as Ryan explained Recall a few hours ago: (in IRC)
You can copy the data from another user's "recall" folder as another user.Even if you don't have Administrator privileges on that account.
> Q. What kind of things are in the database?
> A. Everything a user has ever seen, ordered by application. Every bit of text the user has seen, with some minor exceptions (e.g. Microsoft Edge InPrivate mode is excluded, but Google Chrome isn’t). Every user interaction, e.g. minimizing a window. There is an API for user activity, and third party apps can plug in to enrich data and also view store data. It also stores all websites you visit, even if third party.
So it sends screenshots of your Private Browsing in Firefox and Chrome and Brave to Microsoft.
This will make it easier for police to use COFEE and scrape up more interesting bits from a user's Windows PC.
You have to use the Policy Editor and know what you're doing to disable Recall.
And even then, who really knows?
If you run Windows, it can do anything it wants later.
The Windows 11 Home Edition is not listed as a SKU where the user can opt-out of Recall via the Policy Editor.
[...]
https://github.com/xaitax/TotalRecall
GitHub - xaitax/TotalRecall: This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.
Also see: Is Microsoft trying to commit suicide?