资讯

First Known Zero-Click AI Exploit: Microsoft 365 Copilot’s ‘EchoLeak’ Flaw
Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user ...
Aim Security details first known AI zero-click exploit targeting Microsoft 365 Copilot
Critically, according to Aim’s researchers, all of this happens behind the scenes. Users themselves don’t have to open the ...
AI Security Alarm: Microsoft Copilot Vulnerability Exposed Sensitive Data via Zero-Click ...
Researchers uncover a critical AI flaw in Microsoft 365 Copilot, allowing silent data theft through email without any user ...
tech2geek3 天
EchoLeak: The First Zero-Click AI Exploit Hits Microsoft 365 Copilot
Imagine a cyberattack that doesn’t even need you to click. That’s the chilling reality behind EchoLeak, a groundbreaking zero-click vulnerability discovered in Microsoft 365 Copilot—the popular AI ...
Microsoft 365 Copilot Vulnerable to Zero-Click EchoLeak Exploit, Cybersecurity Researchers Say
For example, Copilot being able to connect to OneDrive and retrieving data from a file stored there to answer a user query would be considered an agentic action. As per the researchers, the attack was ...
Zero-click AI data leak flaw uncovered in Microsoft 365 Copilot
A new attack dubbed 'EchoLeak' is the first known zero-click AI vulnerability that enables attackers to exfiltrate sensitive ...
SecurityWeek2 天
‘EchoLeak’ AI Attack Enabled Theft of Sensitive Data via Microsoft 365 Copilot
Microsoft recently patched CVE-2025-32711, a vulnerability that could have been used for zero-click attacks to steal data ...
Microsoft fixes first known zero-click attack on an AI agent
EchoLeak affected Microsoft 365 Copilot, the AI assistant integrated across several Office applications, including Word, ...
Exclusive: New Microsoft Copilot flaw signals broader risk of AI agents being hacked—‘I ...
Microsoft 365 Copilot, the AI tool built into Microsoft Office workplace applications including Word, Excel, Outlook, ...