[ Ссылка ]
Do you remember that super creepy feature that windows is rolling out called recall? That takes screenshots every couple of seconds forever on your computer. Well, an ethical hacker developed.
A program called total recall. That is designed to highlight the security vulnerabilities in windows, newly announced, recall feature. This tool can easily extract and expose sensitive data collected by recall.
Which can then be used in a myriad of other attacks.
In fact, a separate security researcher has demonstrated that exfiltration of recall databases can be. Done automatically which makes it extremely easy for malware to access the data.
The biggest blunder of this recall feature is that one it's enabled by default. You don't have to opt in to recall. And two, if you do decide to opt out. Which you can attackers. Can automate the process of re. re opting you in or re enabling this feature and you'll never know.
And Microsoft defender is not going to pick this up. Because it's a feature built by windows.
