BREAKING
SearchLeak Hits M365 Copilot
0
click
to trigger
0
x
data stores at risk
The Three-Stage Attack Chain
1
P2P prompt injection
↓
2
HTML render race
↓
3
SSRF bypasses CSP
Enterprise vs Personal Risk
Enterprise
Affected
●
Broad data access
●
Email, files, meetings
●
RAG over org data
Personal
Prior flaw
●
Reprompt in Jan 2026
●
Narrower scope
Patched Server-Side, No Action
AI Agent Access Under Scrutiny
AI NEWS BLITZ
Researchers uncovered a one-click data theft flaw in Microsoft 365 Copilot Enterprise.