ADVERTISEMENT

Researchers turn Microsoft 365 Copilot against users, leaking extremely sensitive data

Microsoft 365 Copilot could’ve leaked sensitive information to attackers with zero user interaction, even if they never opened a malicious email. New research demonstrates how powerful content poisoning can be against inadequate defenses.

Microsoft Recall

Image by Rokas Tenys | Shutterstock

Ernestas Naprys
Ernestas Naprys Senior Journalist
Jun 12, 2025 3 min read

Chatbot collecting and beaming user data

ADVERTISEMENT
James Caunt Marcus Walsh Gintaras Radauskas Niamh Ancell
Join 25,260+ followers on Google News
Add us as your Preferred Source on Google.

Serious implications for AI security

ADVERTISEMENT