https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolContinuously updated, source-cited coverage. https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u15667Sat, 27 Jun 2026 10:37:12 +0000Microsoft addressed two critical flaws in 365 Copilot that allowed data exfiltration. One vulnerability enabled the theft of MFA codes via one-click command injection. Another zero-click flaw allowed attackers to steal files and chat logs using hidden prompts in emails.What's confirmed:CVE-2025-32711, known as EchoLeak or Copilot SearchLeak, is a zero-click indirect prompt injection vulnerability.EchoLeak affects Copilot integrations in Teams, Outlook, PowerPoint, Excel, and Word.CVE-2026-42824 allowed attackers to steal MFA codes using one-click command injection.Microsoft issued a server-sid https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u10454Tue, 23 Jun 2026 23:26:21 +0000A critical-severity attack chain allows external actors to steal enterprise data from Microsoft 365 Copilot tenants via a single click. The exploit can exfiltrate company files, emails, and authentication codes. Microsoft has addressed the flaw.What's confirmed:Varonis Threat Labs disclosed CVE-2026-42824 on June 15, 2026.The SearchLeak exploit enables an external attacker to exfiltrate sensitive enterprise data from a Microsoft 365 Copilot tenant with a single click.The attack can steal company files, emails, and authentication codes. https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u7228Sun, 21 Jun 2026 18:50:14 +0000Microsoft has fixed a critical vulnerability known as SearchLeak in M365 Copilot Enterprise. The flaw allowed attackers to steal files and 2FA codes using a single click via crafted URLs. This attack utilized parameter-to-prompt injections to compromise the target ecosystem.What's confirmed:Microsoft patched the SearchLeak vulnerability identified as CVE-2026-42824.The vulnerability allowed for data theft via a crafted URL.The attack used parameter-to-prompt injections.Still unconfirmed:The flaw allowed attackers to steal 2FA codes and files with a single click. https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u3604Thu, 18 Jun 2026 18:46:06 +0000Varonis Threat Labs identified a vulnerability chain called SearchLeak that converts Microsoft 365 Copilot Enterprise Search into a data theft tool. The attack uses a P2P injection to trick the AI into providing malicious links. This allows attackers to steal data from a target's Microsoft ecosystem.What's confirmed:Varonis Threat Labs disclosed the SearchLeak vulnerability chain on June 15, 2026.The flaw turns Microsoft 365 Copilot Enterprise Search into a one-click data theft tool.The attack bypasses Copilot safety controls to steal user data and evade detection.Still unconfirmed:The vu https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u1835Tue, 16 Jun 2026 22:56:40 +0000A critical vulnerability in Microsoft 365 Copilot Enterprise, called SearchLeak, allows attackers to steal emails, MFA codes, and documents via a single click on a legitimate Microsoft link. The flaw was patched in June but remains actively exploitable. Researchers confirm proof-of-concept attacks work without user interaction, using authentic Microsoft URLs to bypass security. Microsoft rates the flaw as critical, though industry experts question broader LLM security approaches.What's confirmed:A critical vulnerability in Microsoft 365 Copilot Enterprise, dubbed SearchLeak (CVE-2026-42824), a https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u1238Tue, 16 Jun 2026 13:26:54 +0000A critical vulnerability in Microsoft 365 Copilot Enterprise, called SearchLeak, allows attackers to steal emails, MFA codes, and documents with a single click on a legitimate Microsoft link. The flaw was patched in June but remains actively exploitable. Researchers confirm proof-of-concept attacks work without user interaction, using authentic Microsoft URLs to bypass security. Microsoft rates the flaw as critical, though industry experts question broader LLM security approaches.What's confirmed:A single click on a trusted Microsoft domain link can silently steal sensitive corporate data, inc https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u843Tue, 16 Jun 2026 06:32:23 +0000A critical vulnerability in Microsoft 365 Copilot Enterprise, called SearchLeak, allows attackers to steal emails, documents, and meeting details with a single click on a trusted Microsoft domain link. The flaw remains exploitable despite a June patch, while a separate phishing kit targets Microsoft 365 tokens. Researchers confirm proof-of-concept attacks work without user interaction, exploiting authentic Microsoft URLs to bypass security controls. Microsoft rates the flaw as critical, though severity assessments vary.What's confirmed:A vulnerability chain called SearchLeak allows attackers t https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u548Tue, 16 Jun 2026 01:46:22 +0000A patched flaw in Microsoft 365 Copilot Enterprise, called SearchLeak, allows attackers to steal emails, documents, and meeting details with a single click on a trusted Microsoft domain link. Exploitation persists despite a June patch, while a separate phishing kit targets Microsoft 365 tokens. Microsoft calls the flaw critical, but CVSS scores vary. No confirmed link exists between SearchLeak and the Kali365 phishing kit, though both highlight ongoing risks. Researchers confirm proof-of-concept attacks worked without user interaction.What's confirmed:A single click on a legitimate Microsoft d https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u328Mon, 15 Jun 2026 22:12:04 +0000A critical vulnerability chain in Microsoft 365 Copilot Enterprise, called SearchLeak, allows attackers to steal emails, documents, and meeting details with a single click. Microsoft patched the flaw in early June, but new evidence suggests active exploitation persists. Separately, a phishing kit called Kali365 targets Microsoft 365 tokens, maintaining access even after multi-factor authentication resets. No confirmed evidence links SearchLeak to Kali365, but both highlight ongoing risks in Microsoft’s security posture.What's confirmed:A vulnerability chain named SearchLeak in Microsoft 365 Co https://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-toolhttps://www.live-feeds.com/feed/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool#u169Mon, 15 Jun 2026 19:56:35 +0000Microsoft fixed a critical flaw in Copilot Enterprise Search called SearchLeak that allowed attackers to steal emails, MFA codes, files, and meeting details with a single click. The attack chained three vulnerabilities and bypassed standard protections. No evidence of active exploitation has been reported. Microsoft applied a server-side patch in early June without requiring user action.What's confirmed:Microsoft patched a critical vulnerability chain in Microsoft 365 Copilot Enterprise Search, named SearchLeak (CVE-2026-42824), which allowed attackers to exfiltrate sensitive data—including em