ADVERTISEMENT

How a single click can trick Microsoft Copilot into leaking your personal data

A cyber security researcher has uncovered a single click attack that could trick Microsoft’s consumer focused AI assistant into leaking sensitive user data via a legitimate looking link.

Microsoft co pilot reprompt steals personal data

Image by Cybernews

Ann-Marie Corvin
Ann-Marie Corvin Senior Journalist
Jan 16, 2026 Updated: 16 January 2026 4 min read
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News
Add us as your Preferred Source on Google.

How it works: the “q” parameter

Attack-flow-diagram
Microsoft Copilot Personal: Attack flow diagram. Image by Varonis Threat Labs

“Double request” method used to bypass guardrails

ADVERTISEMENT
Recall safety
Researcher shows how it's possible to bypass Copilots safeguards. Rafael Henrique via Getty Images.

Creating a chain request

Mitigating this vulnerability, what to do about it


ADVERTISEMENT