A security flaw detected in Microsoft 365 Copilot AI.

A security flaw detected in Microsoft 365 Copilot AI.

ByThibault Helle

Security Flaw Detected in Microsoft 365 Copilot

A significant security vulnerability has been discovered in the code of Microsoft 365 Copilot, the AI integrated into the widely used 365 office suite. This flaw could have allowed malicious actors to access the data of numerous users and their companies, according to a report by cybersecurity firm Aim Security published on Wednesday, June 11th.

Microsoft was notified several months in advance to address the vulnerability. According to the publisher, no customers were affected by data leaks, as reported by American media outlet Fortune. However, Aim Security stated that many companies using Copilot were theoretically vulnerable to this particularly insidious flaw, as it required no action from the victim. The attack was triggered automatically upon receiving an email in Outlook, the 365 email software.

During laboratory tests, Copilot scanned an infected email from Aim’s researchers during its routine email scan. The email contained a cleverly formulated instruction (or “prompt”) from the researchers, ordering it to search for sensitive data within its accessible information. In some companies, Copilot has access to a significant amount of information, allowing it to explore vast corporate databases and employees’ personal information to provide more relevant responses to each user. Aim’s researchers then only needed to exfiltrate this data to an external site, belonging to the attacker, by connecting Copilot to a Microsoft server entrusted with the transfer.

According to Aim, this type of novel attack (referred to by researchers as an “LLM scope violation”) bypasses the safeguards typically deployed by publishers. It could also affect other generative AIs besides Copilot.

Key Takeaways:

  • A major security flaw was found in Microsoft 365 Copilot.
  • The flaw could have allowed unauthorized access to user and company data.
  • The attack required no action from the victim, triggering automatically via email.
  • Microsoft was notified and claims no customers were affected.
  • The vulnerability highlights a new type of threat to generative AI.

This new type of attack bypasses the safeguards typically deployed by publishers.


Enjoyed this post by Thibault Helle? Subscribe for more insights and updates straight from the source.

Tech Company Builder

With a Master’s in Mechatronics and a drive to solve real-world problems, I build tech companies that merge innovation with impact. From leading award-winning teams to scaling manufacturing and raising multi-million euro investments, my focus is on creating solutions that are both sustainable and scalable.

Similar Posts

The "Dirty Payments" investigation confirms the governance failings of a company thirsty for growth.

The “Dirty Payments” investigation confirms the governance failings of a company thirsty for growth.

ByThibault Helle

Worldline Stock Plummets After “Dirty Payments” Investigation It’s not a happy anniversary. Eleven years, less one day, after its introduction to the Paris Stock Exchange, following its split from the Atos group, the share price of the French payments champion Worldline plummeted by 38.26% on Wednesday, June 25th, triggered by the publication on the same…

The Year of Artificial Intelligence in France?

The Year of Artificial Intelligence in France?

ByThibault Helle

France’s AI Ambitions Take Center Stage in 2025 “The year 2025 could well mark a decisive turning point for artificial intelligence in France. In just a few months, the country has concentrated on its soil a series of major events, unprecedented economic announcements, and a political and industrial mobilization rarely seen on this scale.” This…

Schneider Electric named Europe's most sustainable company

Schneider Electric named Europe’s most sustainable company

ByThibault Helle

Schneider Electric Named Europe’s Most Sustainable Company Schneider Electric has been recognized as Europe’s most sustainable company by Corporate Knights. This distinction acknowledges the company’s contributions to reducing environmental impact, improving energy efficiency, and consistently achieving ambitious sustainability goals. In January 2025, Schneider Electric was named the world’s most sustainable company by Corporate Knights, a…

At Vivatech, Emmanuel Macron Celebrates the "Historic" Partnership Between Mistral AI and Nvidia

At Vivatech, Emmanuel Macron Celebrates the “Historic” Partnership Between Mistral AI and Nvidia

ByThibault Helle

Macron Praises Mistral AI and Nvidia Partnership at VivaTech Arthur Mensch, CEO of Mistral (left), Jensen Huang, CEO of Nvidia (center), and Emmanuel Macron at VivaTech in Paris, June 11, 2025. SARAH MEYSSONNIER/AP “Your partnership is a game-changer. It will strengthen our technological sovereignty and our strategic autonomy.” On the stage of the VivaTech trade…

Artificial Intelligence and the Chainsaw

Artificial Intelligence and the Chainsaw

ByThibault Helle

French Magazine ‘Le Point’ to Replace Human Proofreaders with AI Bad news abounds! The management of the weekly magazine Le Point, part of the Artémis financial group owned by François Pinault, intends to eliminate its proofreading department. In a cost-saving measure at the expense of human jobs, proofreaders face the dreaded initials: AI, artificial intelligence….

Mixed battery company Polarium reports another huge loss.

Mixed battery company Polarium reports another huge loss.

ByThibault Helle

Today’s content must be fast and flawless – that’s why brands are re-evaluating how they work with Product Experience Management. In the face of the digital market’s rapid development, brands are struggling to find the balance between speed and brand consistency. PXM solutions help meet this challenge by delivering product content that is both fast…