Tag: Microsoft 365 Copilot
-
The Register: Microsoft 365 Copilot trips over angle brackets, frustrating coders
Source URL: https://www.theregister.com/2024/11/19/microsoft_365_copilot_symbol/ Source: The Register Title: Microsoft 365 Copilot trips over angle brackets, frustrating coders Feedly Summary: Chatbot seems to choke when fed tricky less-than character Microsoft 365 Copilot appears to have developed an allergy to the less-than typographical symbol, which is preventing users from pasting HTML markup and programming code into the text…
-
CSA: ConfusedPilot: Novel Attack on RAG-based AI Systems
Source URL: https://cloudsecurityalliance.org/articles/confusedpilot-ut-austin-symmetry-systems-uncover-novel-attack-on-rag-based-ai-systems Source: CSA Title: ConfusedPilot: Novel Attack on RAG-based AI Systems Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses a newly discovered attack method called ConfusedPilot, which targets Retrieval Augmented Generation (RAG) based AI systems like Microsoft 365 Copilot. This attack enables malicious actors to influence AI outputs by manipulating…
-
Hacker News: Invisible text that AI chatbots understand and humans can’t?
Source URL: https://arstechnica.com/security/2024/10/ai-chatbots-can-read-and-write-invisible-text-creating-an-ideal-covert-channel/ Source: Hacker News Title: Invisible text that AI chatbots understand and humans can’t? Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a sophisticated method of exploiting vulnerabilities in AI chatbots like Claude and Copilot through “ASCII smuggling,” where invisible characters are used to embed malicious instructions. This innovative…
-
The Register: Copilot’s crudeness has left Microsoft chasing Google, again
Source URL: https://www.theregister.com/2024/10/09/copilot_vs_notebooklm/ Source: The Register Title: Copilot’s crudeness has left Microsoft chasing Google, again Feedly Summary: Surely Redmond knows that almost nobody has tamed unstructured data? Opinion A year ago it looked as if the world could be Microsoft’s oyster. The software giant dominated the enterprise, was catching up to cloudy rivals, and then…
-
Embrace The Red: Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
Source URL: https://embracethered.com/blog/posts/2024/m365-copilot-prompt-injection-tool-invocation-and-data-exfil-using-ascii-smuggling/ Source: Embrace The Red Title: Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information Feedly Summary: This post describes vulnerability in Microsoft 365 Copilot that allowed the theft of a user’s emails and other personal information. This vulnerability warrants a deep dive, because it combines a variety of novel attack techniques…