AI red teaming mostly relies on identifying and patching fixed vulnerabilities, which is a great starting point but not ...

Microsoft’s been inserting AI everywhere it can, including into some of the world’s most popular business productivity apps.

Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user action. Microsoft has mitigated the vulnerability.

Microsoft has fixed a dangerous zero-click attack in its Generative Artificial Intelligence (GenAI) model which could have ...

Researchers uncover a critical AI flaw in Microsoft 365 Copilot, allowing silent data theft through email without any user ...

EchoLeak affected Microsoft 365 Copilot, the AI assistant integrated across several Office applications, including Word, ...

Discover the silent threat of EchoLeak, a new vulnerability in AI systems that can lead to data leakage without user ...

Security researchers at Aim Security discovered "EchoLeak", the first known zero-click artificial intelligence (AI) vulnerability in Microsoft 365 Copilot ...

Aim Labs contacted Microsfot about the flaw in January 2025. The tech giant finalized the patch for the vulnerability in May 2025. Microsoft 365 Copilot is an AI-powered productivity ... including ...

Critical zero-click AI vulnerability EchoLeak exposed sensitive Microsoft 365 Copilot data; Microsoft patched it to prevent data leaks.

A single email can silently trigger Copilot to exfiltrate sensitive corporate data — no clicks, no warnings, no user action.