Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user action. Microsoft has mitigated the vulnerability.

Aim Security details first known AI zero-click exploit targeting Microsoft 365 ... dubbed “EchoLeak,” was found in Microsoft Corp.’s 365 Copilot generative AI tool in January and reported to ...

Microsoft 365 and Outlook users are being targeted by a tactic that injects fake billing alerts directly into their calendars ...

Microsoft 365 Copilot is an AI-powered productivity tool that integrates with apps such as Word, Excel, PowerPoint, Outlook and Teams. It utilizes LLMs – specifically, OpenAI’s GPT models – and the ...

First-ever zero-click attack targets Microsoft 365 Copilot. News. ... EchoLeak’s exploit mechanism. ... and think twice before letting AI read your inbox.” More Microsoft security news: ...

A new attack dubbed 'EchoLeak' is the first known zero-click AI vulnerability that enables attackers to exfiltrate sensitive data from Microsoft 365 Copilot from a user's context without interaction.

Dubbed "EchoLeak," the security flaw is being described by cybersecurity researchers as the first known zero-click attack targeting an AI assistant. EchoLeak affected Microsoft 365 Copilot, the AI ...

The Varonis Managed Data Detection and Response (MDDR) forensic team has uncovered a sophisticated phishing campaign that ...

Okta researchers found hackers could make a phishing site with AI in just 30 seconds. Here's how to protect your business.

Cybersecurity firm QiAnXin links a North America-based APT group to long-term espionage targeting China’s AI, semiconductor, ...

Scammers Exploit Microsoft 365 to Target PayPal Users. News 8 Jan 2025. Written by. Alessandro Mascellino. ... “Using neural networks to analyze social graph patterns and other advanced AI techniques ...