Researchers at Varonis Threat Labs uncovered "SearchLeak," a flaw in Microsoft 365 Copilot Enterprise that lets attackers steal a victim's emails and files by getting them to click a single crafted URL, prompting Microsoft to assign CVE-2026-42824 (rated Critical) and issue a server-side fix in early June 2026.
Continue reading
The rest of this article is for AI News Blitz readers. Choose an option below to keep reading.
Already purchased? Sign in✓ Signed in — this article isn’t included in your current plan.