I also talked about Microsoft’s new Recall feature that takes screenshots of everything done on a PC, raising cybersecurity concerns. Despite promises of security and privacy, cybersecurity expert Kevin Beaumont has discovered potential security flaws, including storing data in plain text in a local database. This could make it easy for attackers to extract the database and its contents.
In response, Microsoft will update the Recall feature for Copilot+ PCs to be more secure and require users to opt in. Users will need to prove their presence via Windows Hello to enable and use Recall. The feature will encrypt the search index database and require authentication for access. These updates will be shipped to customers with Copilot+ PCs on June 18. Microsoft is prioritizing security after facing pushback and concerns about privacy.
The Recall feature uses local AI models to capture and search snapshots of user activity on their PC.
Why do we care?
This is exactly the right way to position yourself as the advisor. Implement strict access control measures to limit who can enable and use the Recall feature within an organization. Provide training on secure use practices, including how to manage and protect data captured by the Recall feature. Implement multi-factor authentication (MFA) for accessing critical features and data.
And most of all, help customers with the policies around the use of the technology.

