Imagine an attack so stealthy it requires no clicks, no downloads, no warning – just an email sitting in your inbox. This is EchoLeak, a critical vulnerability in Microsoft 365 Copilot that lets hackers steal sensitive corporate data without a single action from the victim.
Discovered by Aim Security, it’s the first documented zero-click attack on an AI agent, exposing the invisible risks lurking in the AI tools we use every day.
Imagine an attack so stealthy it requires no clicks, no downloads, no warning – just an email sitting in your inbox. This is EchoLeak, a critical vulnerability in Microsoft 365 Copilot that lets hackers steal sensitive corporate data without a single action from the victim.
Discovered by Aim Security, it’s the first documented zero-click attack on an AI agent, exposing the invisible risks lurking in the AI tools we use every day. Read More
Related posts:
23andMe declares bankruptcy, security leaders discuss data concerns
Virginia Tech researchers raise red flags about mixed-reality security
How AI can attack corporate decision-making
How to hack-proof your laptop’s Bluetooth
Strong fintech security posture at risk via third-party weak links
AI-powered APIs proving highly vulnerable to attack