Storia in 1 fonti

Microsoft Copilot just exfiltrated a company's files. The attack was one email. Here's the mechanism.

Microsoft Copilot just got tricked into exfiltrating a company's files by a single email — and the bug isn't really Microsoft's. It's the default behavior of every LLM-with-tools shipped in 2026. Here's the exact attack chain, plus the four mitigations that actually cut the risk in your own AI features.

Raccontata da

dev.to

Timeline cronologica

martedì 26 maggio 2026·dev.to
Microsoft Copilot just exfiltrated a company's files. The attack was one email. Here's the mechanism.
Microsoft Copilot just got tricked into exfiltrating a company's files by a single email — and the bug isn't really Microsoft's. It's the default behavior of every LLM-with-tools…