Windows Recall was meant to make your PC history easier to search, but a new proof of concept is putting that promise under pressure again.
TotalRecall Reloaded shows how information captured by the Windows 11 feature can still be intercepted after sign in, even after Microsoft overhauled its protections following last year’s backlash.
Recall doesn’t capture a narrow slice of activity. It can preserve a broad visual record of what happens on your PC, including apps, websites, messages, and other on screen content.
Microsoft shifted the feature to opt in use and added encryption plus Windows Hello protection, but the latest findings suggest the weaker point comes after the service is unlocked and starts handing information to another system process.
The weaker link may be elsewhere
The latest claim is that the database itself is no longer the easiest place to attack. Instead, the exposure begins after someone authenticates with Windows Hello and the system starts sending screenshots, extracted text, and metadata to a separate process called AIXHost.exe.
TotalRecall Reloaded reportedly injects code into that process without administrator privileges, then waits for the session to open and the information to start moving.
Some actions, including pulling the latest screenshot, collecting select metadata, and deleting the full archive, can happen without Windows Hello authentication.
Microsoft sees it differently
Microsoft told Ars Technica that the behavior shown by the researcher fits its intended protections and existing controls, and said it doesn’t amount to a security boundary bypass or unauthorized access.
The findings were sent to Microsoft’s Security Response Center on March 6, and the company classified them as not a vulnerability on April 3.
That response is unlikely to settle nerves. Anyone who can access your PC and use your Windows Hello fallback PIN could still reach a detailed archive of emails, browsing activity, messages, and other personal traces.
Why the trust problem remains
Recall was already under scrutiny because it can record so much of what happens on a PC, and this report gives critics another reason to stay skeptical even if Microsoft says the behavior works as designed.
Signal, Brave, and AdGuard have already taken steps to keep their content out of Recall by default, showing the concern extends beyond security researchers.
For Windows 11 users, the takeaway is practical. If you do not need Recall, leaving it off remains the safer move. If you do want it, treat it as a convenience feature with real privacy tradeoffs attached, and watch whether more apps start opting out next.