Microsoft’s been inserting AI everywhere it can, including into some of the world’s most popular business productivity apps.

Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user ...

A new attack dubbed 'EchoLeak' is the first known zero-click AI vulnerability that enables attackers to exfiltrate sensitive ...

Use precise geolocation data. Actively scan device characteristics for identification. Store and/or access information on a ...

EchoLeak affected Microsoft 365 Copilot, the AI assistant integrated across several Office applications, including Word, ...

Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple ...

With CVE-2024-49063, Microsoft has plugged the first of what could be many security flaws in the field of artificial intelligence. Anyone wondering what AI vulnerabilities might look like ...

Microsoft’s AI-powered bots for the healthcare industry have been found to be vulnerable in a way that allowed threat actors to move across the target IT infrastructure, and even steal sensitive ...

Microsoft used its AI-powered Security Copilot to discover 20 previously ... including integer and buffer overflows in filesystem parsers, command flaws, and a side-channel in cryptographic ...

The event will build upon Microsoft’s existing bug bounty program and incentivize research into high-impact security flaws that can affect the software powering cloud and AI workloads.

the AI tool built into Microsoft Office workplace applications including Word, Excel, Outlook, PowerPoint, and Teams, harbored a critical security flaw that, according to researchers, signals a ...