BREAKING
SearchLeak Hits M365 Copilot
0click
to trigger
0x
data stores at risk
The Three-Stage Attack Chain
1P2P prompt injection
2HTML render race
3SSRF bypasses CSP
Enterprise vs Personal Risk
EnterpriseAffected
Broad data access
Email, files, meetings
RAG over org data
PersonalPrior flaw
Reprompt in Jan 2026
Narrower scope
Patched Server-Side, No Action
AI Agent Access Under Scrutiny
AI NEWS BLITZ
Researchers uncovered a one-click data theft flaw in Microsoft 365 Copilot Enterprise.