SearchLeak exposes Microsoft 365 Copilot data

// 2h agoSECURITY INCIDENT

SearchLeak exposes Microsoft 365 Copilot data

Varonis Threat Labs discovered 'SearchLeak,' a critical one-click vulnerability chain in Microsoft 365 Copilot tracked under CVE-2026-42824. The exploit chains a Parameter-to-Prompt injection with a browser rendering race condition and a Bing SSRF bypass to silently exfiltrate organizational data.

// ANALYSIS

Combining LLMs with direct graph access and untrusted URL inputs creates an inherently insecure attack surface that elevates classic web bugs into critical enterprise-wide compromise vectors.

* Parameter-to-Prompt (P2P) injection turns a natural language search query parameter into a silent, auto-executed instruction set.

* Incremental DOM rendering during streaming allows malicious HTML image tags to execute and fire HTTP requests before Copilot's post-processing output sanitizer wraps the response.

* Allowed CSP domains like Bing can be abused as exfiltration proxies by triggering their server-side request forgery (SSRF) endpoints.

* Since Copilot inherits the victim's full graph permissions, attackers can silently access MFA codes, emails, calendars, and private company files with zero additional verification.

// TAGS

securityvulnerabilitymicrosoft-365-copilotvaronisssrfcsp-bypassdata-exfiltration

DISCOVERED

2h ago

2026-06-15

PUBLISHED

3h ago

2026-06-15

RELEVANCE

9/ 10

AUTHOR

IntCyberDigest

// KEEP READING

More AI developer news from the feed

EXPLORE FULL FEED

LAUNCH51m ago

Browser Use v4 plays GeoGuessr

Browser Use has launched v4 of its browser-agent platform, featuring a demo where the AI agent plays GeoGuessr by analyzing 3D Google Maps views. By identifying environmental clues, the agent estimates locations within 50 km, available now on their cloud platform.

NEWS59m ago

OpenAI backs open-source maintainers with $160K

OpenAI has announced a renewal and expansion of its support for open-source maintainers in the Astral and Codex ecosystems, committing over $160,000 in direct funding distributed via GitHub Sponsors. The initiative runs alongside OpenAI's existing $1 million fund that provides developers with free ChatGPT Pro access, API credits, and security tools.

POLICY1h ago

The Trump administration has forced Anthropic's newly released Claude Fable 5 offline via executive fiat just three days after launch, citing national security concerns.

Anthropic released its most powerful AI model, Claude Fable 5, to the public, only for the Trump administration to force it offline three days later. Citing national security concerns, the administration issued an executive fiat to bar the model's use by any foreign national, leading to its immediate shutdown.