The researchers at Aim Security dubbed the flaw “EchoLeak.” Microsoft told Fortune that it has already fixed the issue in Microsoft 365 Copilot and that its customers were unaffected.

Microsoft has chosen not to tell customers about a recently patched vulnerability in M365 Copilot. The issue allowed M365 ...

Microsoft Copilot Studio had a security issues which could have allowed threat actors to exfiltrate sensitive data from vulnerable endpoints, experts have warned. Cybersecurity researcher Evan ...

Today is Microsoft's August 2025 Patch Tuesday, which includes security updates for 107 flaws, including one publicly ...

Microsoft Copilot’s audit log flaw creates blind spots for attackers, leaving security teams struggling to trace activity. Enterprises must act fast.

Microsoft fixed 111 vulnerabilities, including a Windows Kerberos zero-day enabling full AD compromise via BadSuccessor.

Microsoft used Security Copilot to scan open source bootloaders for vulnerabilities It discovered 20 new flaws in just a short time Microsoft says the AI tool saved the company at least a week of work ...

Microsoft declined to comment on the GPT-5 references in Copilot, and the company isn’t commenting on its new smart mode, ...

The bug, tracked as CVE-2025-31199, could allow hackers to access files in the Downloads folder, as well as caches utilized by Apple Intelligence. Microsoft dubbed the vulnerability “Sploitlight” ...

Of the multiple "Copilot"-branded products that Microsoft has developed in the past two years, Copilot for Security is one of the most-anticipated, along with Copilot for Microsoft 365.

Microsoft 365 Copilot, the AI tool built into Microsoft Office workplace applications including Word, Excel, Outlook, PowerPoint, and Teams, harbored a critical security flaw that, according to ...