TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

By rooter

A single click on a trusted Microsoft link could have let an attacker pull emails, calendar details, and indexed files out of Microsoft 365 Copilot Enterprise Search.

Researchers at Varonis Threat Labs chained three bugs into a one-click exfiltration path they call SearchLeak. Because the link pointed to a real microsoft.com domain, traditional anti-phishing and URL filtering tools were

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

China-Nexus Actor Spied on US Researchers Undetected for a Year

rooter
Cyber Security

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers

rooter
Cyber Security

The Beginning of the End of Social Engineering

rooter

Leave a Reply

You Missed

News

20 years of Intel Macs: Why Apple switched, and why it switched again

News

Good news—we have extra time before the Sun ends life on Earth

News

‘Dead by Daylight’ Movie Taps Rising Horror Filmmaker as Director

News

Big Tech’s desperate last push at AI regulation