News
We handed AI the keys to our digital lives, but a vulnerability in Copilot shows a nightmarish scenario where your future could be stolen without a single click, writes Satyen K. The most terrifying ...
EchoLeak shows that enterprise-grade AI isn’t immune to silent compromise, and securing it isn’t just about patching layers. “AI agents demand a new protection paradigm,” Garg said.
The vulnerability, dubbed EchoLeak and assigned the identifier CVE-2025-32711, could have allowed hackers to mount an attack without the target user having to do anything.EchoLeak represents the ...
EchoLeak exposes deeper AI flaws. Microsoft patched Copilot’s EchoLeak flaw, but experts warn the real threat is architectural, not accidental.
I n a first-of-its-kind discovery, cybersecurity researchers have identified a major security flaw in a Microsoft 365 Copilot AI agent. The vulnerability, called EchoLeak, allowed attackers to ...
A critical AI vulnerability, 'EchoLeak,' was discovered in Microsoft 365 Copilot by Aim Labs researchers in January 2025. This flaw allowed attackers to exfiltrate sensitive user data through ...
EchoLeak is a reminder that even robust, enterprise-grade AI tools can be leveraged for sophisticated and automated data theft," said Itay Ravia, Head of Aim Labs.
EchoLeak was the first known zero-click vulnerability in an AI assistant. It concerned Microsoft 365 Copilotwhich is integrated into several Office applications, including Word, Excel, Outlook, ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results