ainewsblitz.com

Breaking

M365 Copilot Flaw 'SearchLeak' Could Steal Secrets in One Click

  • Security
  • AI Agents

Varonis Threat Labs reported a vulnerability chain dubbed "SearchLeak" (CVE-2026-42824) in Microsoft 365 Copilot Enterprise Search that could let attackers steal corporate secrets by tricking a victim into a single click on a malicious URL. Microsoft fixed the issue server-side in early June 2026, and no real-world exploitation has been observed.

Continue reading

The rest of this article is for AI News Blitz readers. Choose an option below to keep reading.

$20
Read this article
$29/month
Unlimited — all 5,183 articles, the full archive, and comprehension quizzes
Save 72%
$98/year
≈ $8.17/month
Unlimited, billed once a year