Dark Reading

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft

The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden ...

Critical Copilot vulnerability allowed hackers to steal 2FA code from users

Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the ...
The Next Web

A single click on a Microsoft link could have drained your inbox. Here’s how SearchLeak worked.

Varonis chained three bugs in Microsoft 365 Copilot Enterprise Search into a one-click data theft path that bypassed phishing filters and CSP protections.
Microsoft

Copilot Cowork is now generally available

Today we’re announcing the general availability of Copilot Cowork worldwide. After three months of preview in Frontier, more than half of the Fortune 500 is using Copilot Cowork, along with companies ...
GhanaWeb - Ghana HomePage

Microsoft 365 Copilot vulnerability: what Ghanaian office workers need to know

A critical Microsoft 365 Copilot flaw let hackers steal emails and documents with one click. Here's what happened and how to stay safe.