This Copilot vulnerability could expose emails, 2FA codes, and other sensitive data

中文 日本語 Español
Mashable
Cybersecurity researchers discovered a three-stage vulnerability called SearchLeak that allowed attackers to exfiltrate sensitive data from Microsoft 365 Copilot.
Read Full Article

Summary

Researchers at Varonis Threat Labs identified a vulnerability chain dubbed SearchLeak that compromised Microsoft 365 Copilot. By combining Parameter-to-Prompt injection with existing web flaws, attackers could bypass AI safeguards to extract sensitive information like emails, 2FA codes, and internal documents. Although the data was temporarily vulnerable during Copilot's response streaming, Microsoft has since patched the flaw.

(Source:Mashable)

中文 日本語 Español
Read Full Article
The Verge

Midjourney Medical goes from generating ‘cat images’ to full-body ultrasound scans
TechCrunch

How to turn off AI in your Google Docs
TechCrunch

Roelof Botha joins SpaceX’s board of directors
TechCrunch

After unveiling ridiculously expensive AR glasses, Snap’s stock takes a dive
TechCrunch

World leaders want American AI. They just don’t want America to be able to turn it off.
TechCrunch

Anthropic becomes first AI startup to join the Frontier carbon removal coalition
The Verge

Anthropic got hit by export rules nobody understands
TechCrunch

Social media’s next evolution: user-controlled algorithms
TechCrunch

World model maker Odyssey nabs $1.45B valuation backed by Amazon and other big names
The Verge

Two-thirds of Americans think AI is advancing too quickly
Home | Articles | News | About | Español | 中文 | 日本語
© Copyright by aionpulse.com. All rights reserved.