In May, Microsoft introduced Recall, an AI that takes screenshots every five seconds for user convenience. However, concerns were raised about privacy and security, leading to delayed launch and modifications. Despite these changes, Tom's Hardware testing revealed the 'filter sensitive information' feature failed to prevent gathering sensitive data. Specifically, Recall captured credit card numbers, social security numbers, and other personal data while filling out a Notepad window and a loan application PDF, compromising users' financial information and privacy.
Source: https://www.wired.com/story/microsoft-recall-credit-card-social-security-numbers/
"id": "mic000121524",
"linkid": "microsoft",
"type": "Vulnerability",
"date": "12/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"