Microsoft announces security upgrades for Windows Recall feature before relaunch

Microsoft has announced a security and privacy overhaul for its Recall feature in Windows, which faced criticism for storing user data in plaintext. The original version was delayed indefinitely after concerns from security researchers. The revamped Recall will now be opt-in by default and can be completely removed from PCs. Users will need to re-authenticate with Windows Hello to access Recall data, which will be encrypted and protected by additional security measures. New requirements include enabling BitLocker or Device Encryption, as well as Virtualization-Based Security. Recall will operate within a secure enclave, isolating data from the rest of the system to enhance protection against malware.