News

First Known Zero-Click AI Exploit: Microsoft 365 Copilot’s ‘EchoLeak’ Flaw
Security researchers uncovered “EchoLeak,” a zero-click flaw in Microsoft 365 Copilot, exposing sensitive data without user ...
ET CIO8h
The silent threat in your AI stack: Why EchoLeak is a wake-up call for CXOs
Discover the silent threat of EchoLeak, a new vulnerability in AI systems that can lead to data leakage without user ...
Researchers find 'dangerous' AI data leak flaw in Microsoft 365 Copilot: What the company has to say
A critical AI vulnerability, 'EchoLeak,' was discovered in Microsoft 365 Copilot by Aim Labs researchers in January 2025.
Security researchers found a zero-click vulnerability in Microsoft 365 Copilot.
The vulnerability, called “EchoLeak,” lets attackers “automatically exfiltrate sensitive and proprietary information” from Microsoft 365 Copilot without knowledge of the user, according to findings ...
ITC.ua21h
Hacking artificial intelligence: Microsoft patches first known zero-click vulnerability in AI assistant
EchoLeak was the first known zero-click vulnerability in an AI assistant. It concerned Microsoft 365 Copilotwhich is integrated into several Office ...
Security Boulevard20h
Zero-Click Flaw in Microsoft Copilot Illustrates AI Agent, RAG Risks
Aim Security researchers found a zero-click vulnerability in Microsoft 365 Copilot that could have been exploited to have AI tools like RAG and AI agents hand over sensitive corporate data to ...
Explore more
Techzine Europe23h
Zero-click attack reveals new AI vulnerability
Echoleak is a new attack vector that exploits AI assistants by subtly manipulating prompts. The attack was executed without ...