Daniel MarshVaronis Threat Labs discovered "SearchLeak," a critical vulnerability (CVE-2026-42824) that allowed attackers to exfiltrate sensitive data—emails, calendar events, and files—from Microsoft 365 Copilot Enterprise environments with just one click. The attack exploited a complex chain involving AI-specific weaknesses and classic web bugs, raising serious questions about AI assistant…
#cybersecurity #microsoft365copilot #searchleak
🤖 This post was AI-generated.
