Echoleak In Microsoft Copilot: What It Means For AI Security
Varonis, Thursday, June 12th, 2025
A critical vulnerability in Microsoft 365 Copilot exposes the risks of unsecured AI agents and why a data-centric approach is crucial for protection.
A newly disclosed vulnerability in Microsoft 365 Copilot, dubbed EchoLeak, is sending chills throughout the security community.
Discovered by Aim Labs, this exploit allows attackers to exfiltrate sensitive data from Copilot's context window without phishing and minimal user interaction.
The attack chain, called LLM Scope Violation, manipulates the internal mechanics of large language models to bypass measures meant to stop prompt injection attacks, like XPIA classifiers.