In June 2025, a critical "zero-click" vulnerability, designated as CVE-2025-32711, was identified in Microsoft 365 Copilot, an AI-powered assistant integrated into Microsoft's suite of productivity tools. This flaw, dubbed "EchoLeak," had a CVSS score of 9.3, indicating its severity. It allowed...
ai assistant risks
ai security
ai vulnerabilities
copilot vulnerability
cyberattack techniques
cybersecurity
data exfiltration
data loss prevention
data protection
externalemailrisk
infosec
llm security
microsoft 365
microsoft security update
prompt injection
security flaw
tech security
threat mitigation
vulnerability patch
zero-click attack