Microsoft Copilot Cowork Exfiltrates Files
Microsoft Copilot Cowork has a vulnerability that allows agents to exfiltrate files. The system can send emails to the user's inbox, and these emails can contain external images that trigger network requests, potentially leaking data to an attacker. Additionally, prompt injection could lead to the leakage of pre-authenticated OneDrive download links, enabling unauthorized file downloads. AI
IMPACT This vulnerability highlights the ongoing challenge of securing agentic AI systems and preventing data exfiltration, impacting user trust and enterprise adoption.