A single email can silently trigger Copilot to exfiltrate sensitive corporate data — no clicks, no warnings, no user action.

Microsoft’s been inserting AI everywhere it can, including into some of the world’s most popular business productivity apps.

Security researchers at Aim Security discovered "EchoLeak", the first known zero-click artificial intelligence (AI) ...

Microsoft has fixed a dangerous zero-click attack in its Generative Artificial Intelligence (GenAI) model which could have ...

The potential benefits and risks in using agentic AI to make decisions and perform transactions for us, is reshaping the ...

Researchers uncover a critical AI flaw in Microsoft 365 Copilot, allowing silent data theft through email without any user ...

Microsoft recently patched CVE-2025-32711, a vulnerability that could have been used for zero-click attacks to steal data ...

Here, I'll outline how CISOs can assign red teams to hunt for such files, some examples of real-world findings and suggested ...

The M365 AI agent could be tricked into releasing sensitive information via email and without a mouse click. Microsoft has ...

Nudge Security announced today a new browser extension for its SaaS and AI security governance solution that detects identity ...

Evercore analyst Mark Mahaney used ChatGPT and Gemini to predict Google's antitrust case outcomes, showing AI's potential to ...

The agent helps developers secure their apps with enterprise-grade, OWASP MASVS-aligned defenses like obfuscation, ...