Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

"TotalRecall Reloaded" tool finds a side entrance to Windows 11's Recall database

Alexander Hagenah says the tool can extract screenshots and OCR text without administrator privileges, while Microsoft says the issue is not a vulnerability.

  • On April 3, 2026, Microsoft officially classified Alexander Hagenah's findings regarding Windows Recall as "not a vulnerability," rejecting claims of a security flaw in the feature.
  • Security researcher Hagenah created the TotalRecall Reloaded tool to test Windows Recall, which captures screenshots and metadata of user activity to facilitate content searching.
  • Hagenah reported that his tool injects a DLL into the AIXHost process, bypassing security boundaries after Windows Hello authentication to extract sensitive data.
  • Microsoft maintains the architecture functions as intended, though Hagenah stated, "My research shows that the vault is real," disputing the company's security assessment.
  • Despite not planning to address the issue, Microsoft notes that Windows Recall is optional and can be disabled to mitigate potential privacy risks.
Insights by Ground AI

19 Articles

Tech SpotTech Spot
Center

Open-source tool decrypts all private data collected by Windows Recall on Copilot PCs

Alexander Hagenah previously exposed issues affecting Windows Recall with his TotalRecall tool, prompting Microsoft to redesign the feature around stronger architectural principles. Now, the security researcher is once again highlighting Recall's weaknesses with TotalRecall Reloaded. The updated tool can reportedly bypass protections in Recall and access private user data stored...Read Entire Article

Read Full Article
Digital TrendsDigital Trends
Center

Windows Recall still has a side door into your private PC history

Windows Recall's database may be better protected now, but a new proof of concept suggests the data path after sign in still creates privacy risks for Windows 11 users.

·United States
Read Full Article
Ars TechnicaArs Technica
Center

"TotalRecall Reloaded" tool finds a side entrance to Windows 11's Recall database

The vault is solid. The delivery truck is not."

·United States
Read Full Article
La OpinionLa Opinion
Lean Left

Windows Recall Back Into Evidence and Confirms the Worst Fears About Privacy

Windows automatic screenshots feature called Recall can be leveraged by hackers to violate your privacy

Read Full Article
Tech RadarTech Radar
Center

Microsoft's Recall tool is back and still has major security concerns — but the company denies any data risk

Windows 11 Recall was delayed in 2024 due to security flaws, and those same issues are being discovered now, despite Microsoft's promise to secure user data.

·United Kingdom
Read Full Article
gamestar.degamestar.de

Windows »Privacy Nightmare« Again Raises Concerns: »This Is Exactly What They Should Restrict«

One year after Windows Recall was rebooted, security researcher Alexander Hagenah has released a tool that can capture all recall data in plain text. Microsoft refuses to acknowledge this as a vulnerability.

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 80% of the sources are Center
80% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

dailyguardian.ca broke the news on Wednesday, April 15, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Privacy icon

Privacy

Microsoft icon

Microsoft

Cyberattacks icon

Cyberattacks

Windows 11 icon

Windows 11

Technology icon

Technology

Gadgets icon

Gadgets

Artificial Intelligence icon

Artificial Intelligence

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal