在安全专家强烈反对后，微软对即将推出的人工智能驱动的 Windows“召回”功能进行了更改

微软即将推出的人工智能驱动的Windows“召回”功能，每隔几秒就截取用户活动屏幕的屏幕截图，在安全专家的强烈反对后，该功能将进行一些更改。

Microsoft has announced some changes to its upcoming AI-powered Windows “Recall” feature following backlash from security experts.

在遭到安全专家的强烈反对后，微软宣布对其即将推出的人工智能驱动的 Windows“召回”功能进行一些更改。

The feature, which takes screenshots of users’ active screen every few seconds, came under fire immediately after it was announced on May 20, with Malwarebytes calling it a “built-in keylogger” and software engineer and Web3 critic Molly White calling it “spyware.”

该功能每隔几秒就截取用户活动屏幕的屏幕截图，在 5 月 20 日宣布后立即受到批评，Malwarebytes 称其为“内置键盘记录器”，软件工程师兼 Web3 评论家 Molly White 称其为“间谍软件” ”。

The concerns were largely due to the fact that Recall does not censor sensitive information in the snapshots it takes, such as passwords or financial information. This would potentially make the database of Recall snapshots on a user’s computer a gold mine for hackers, with tons of sensitive data all in one place and easily searchable using the AI-powered search feature.

这些担忧主要是由于 Recall 不会审查其拍摄的快照中的敏感信息，例如密码或财务信息。这可能会使用户计算机上的 Recall 快照数据库成为黑客的金矿，大量敏感数据都集中在一个地方，并且可以使用人工智能驱动的搜索功能轻松搜索。

Microsoft insisted users’ privacy was protected due to all Recall data being stored locally and encrypted by Device Encryption or BitLocker. The feature, which would be enabled by default on Copilot+ PCs, could also be disabled and configured to not record specific sites and apps.

微软坚称用户的隐私受到保护，因为所有 Recall 数据都存储在本地并通过设备加密或 BitLocker 进行加密。该功能默认在 Copilot+ PC 上启用，也可以禁用并配置为不记录特定网站和应用程序。

However, in the weeks since Recall was announced, multiple security pros have put available previews to the test and demonstrated ways the Recall database can be accessed and exploited to steal sensitive data en masse.

然而，自 Recall 宣布以来的几周内，多名安全专家已经对可用的预览进行了测试，并演示了访问和利用 Recall 数据库来批量窃取敏感数据的方法。

For example, Alex Hagenah, head of cyber controls at SIX Group and technical advisory board member at HackerOne, developed a “very simple’ proof-of-concept tool called “TotalRecall,” which copies, searches and extracts information from the Recall database file.

例如，SIX Group 网络控制主管兼 HackerOne 技术顾问委员会成员 Alex Hagenah 开发了一种名为“TotalRecall”的“非常简单”的概念验证工具，该工具可以从 Recall 数据库文件中复制、搜索和提取信息。

Additionally, James Forshaw, a security research in Google Project Zero, published a blog post about bypassing access control lists, which includes an edit revealing that the Recall database can be accessed by a user without administrative privileges by using a token from the Windows AIXHost.exe process or simply rewriting the discretionary access control list, as the database is considered to be owned by the user.

此外，Google 零号项目的安全研究人员 James Forshaw 发表了一篇有关绕过访问控制列表的博客文章，其中包含一项编辑，显示没有管理权限的用户可以使用 Windows AIXHost 的令牌来访问 Recall 数据库。 exe 进程或简单地重写自主访问控制列表，因为数据库被认为由用户拥有。

In response to “customer feedback,” Microsoft announced in a blog post on Friday that Recall would no longer be activated by default, requiring users to opt-in to use the feature. Additionally, users will need to complete the Windows Hello biometric enrollment process to enable Recall, lowering the chance that a hacker could enable it on the machine of a user who had opted out.

为了回应“客户反馈”，微软在周五的一篇博客文章中宣布，默认情况下将不再激活 Recall，需要用户选择使用该功能。此外，用户需要完成 Windows Hello 生物识别注册过程才能启用 Recall，从而降低黑客在选择退出的用户的计算机上启用它的机会。

Proof of presence through Windows Hello will be required to view the Recall timeline and use the AI-powered search tool, and the snapshots will only be decrypted upon user authentication via Windows Hello Enhanced Sign-in Security, Microsoft said.

微软表示，要查看召回时间表并使用人工智能驱动的搜索工具，需要通过 Windows Hello 提供存在证明，并且只有通过 Windows Hello 增强登录安全性进行用户身份验证后，快照才会被解密。

“We want to reinforce what has previously been shared from David Weston, vice president of Enterprise and OS Security, about how Copilot+ PCs have been designed to be secure by default,” the blog post stated.

“我们希望强化企业和操作系统安全副总裁 David Weston 之前分享的关于 Copilot+ PC 如何设计为默认安全的内容，”该博客文章表示。

Kevin Beaumont, a security researcher and former senior threat intelligence analyst at Microsoft, who has been a vocal critic of Recall since its announcement, responded positively to the update.

微软安全研究员、前高级威胁情报分析师凯文·博蒙特（Kevin Beaumont）对此次更新做出了积极回应，自 Recall 发布以来，他一直直言不讳地批评它。

“Turns out speaking up works,” Beaumont wrote on X.

“事实证明，大声疾呼是有效的，”博蒙特在 X 上写道。

“There are obviously going to be devils in the details – potentially big ones – but there’s some good elements here. Microsoft needs to commit to not trying to sneak users to enable it in the future, and it needs turning off by default in Group Policy and Intune for enterprise orgs,” Beaumont added.

“显然，细节中会存在一些问题——可能是大问题——但这里也有一些好的元素。微软需要承诺未来不会试图欺骗用户启用它，并且需要在企业组织的组策略和 Intune 中默认关闭它，”Beaumont 补充道。