Microsoft’s been inserting AI everywhere it can, including into some of the world’s most popular business productivity apps.

Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user ...

A new attack dubbed 'EchoLeak' is the first known zero-click AI vulnerability that enables attackers to exfiltrate sensitive ...

Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple ...

Use precise geolocation data. Actively scan device characteristics for identification. Store and/or access information on a ...

EchoLeak affected Microsoft 365 Copilot, the AI assistant integrated across several Office applications, including Word, ...

A single email can silently trigger Copilot to exfiltrate sensitive corporate data — no clicks, no warnings, no user action.

Aim Security researchers found a zero-click vulnerability in Microsoft 365 Copilot that could have been exploited to have AI tools like RAG and AI agents hand over sensitive corporate data to ...

A critical security flaw in Microsoft 365 Copilot, an AI tool, highlights the increasing risk of AI agents being hacked.

Researchers said the vulnerability, dubbed “EchoLeak,” could allow a hacker to access data without any specific user ...

the AI tool built into Microsoft Office workplace applications including Word, Excel, Outlook, PowerPoint, and Teams, harbored a critical security flaw that, according to researchers, signals a ...