The “EchoLeak” attack is the first known zero-click AI vulnerability targeting Microsoft 365 Copilot, enabling attackers to exfiltrate sensitive data without user interaction. Developed by Aim Labs researchers in January 2025, the flaw, identified as CVE-2025-32711 by Microsoft, was rated critical and addressed server-side by May, with no evidence of exploitation reported. EchoLeak exploits how Microsoft 365 Copilot processes prompts and retrieves data, leveraging a maliciously embedded prompt in seemingly benign emails. This allows attackers to trick the AI into sharing internal data, often through crafted links or images. The incident underscores the risks associated with integrating AI into business systems, as traditional defenses may struggle to cope. Organizations are advised to enhance their defenses by strengthening prompt injection filters, applying granular input scoping, and configuring retrieval engines to block external communications.
Source link
Critical Zero-Click AI Data Leak Vulnerability Discovered in Microsoft 365 Copilot
Leave a Comment
Leave a Comment
