Login
Israel-Hamas Conflict
Airstrike
Aviation Accidents
South America
Military
World Cup
Parade
Donald Trump
Benjamin Netanyahu
War
Social Media
Immigration
Artificial Intelligence
institutional access

You are connecting from
Lake Geneva Public Library,
please login or register to take advantage of your institution's Ground News Plan.

Published loading...Updated

Copilot Vision Just Launched on Windows — Here’s What It Actually Does

  • In January 2025, Aim Security researchers discovered and reported a critical zero-click vulnerability called EchoLeak affecting Microsoft 365 Copilot AI tool.
  • The flaw allowed attackers to send a malicious email embedding hidden prompts that could extract sensitive internal data without user interaction or malware.
  • Microsoft fixed the issue server-side in May 2025, assigned it CVE-2025-32711, and stated no customers were affected or required action.
  • Aim Security's Adir Gruss called EchoLeak a significant breakthrough but warned such flaws reveal fundamental design risks in AI agents and broader data exposure.
  • The event underscores the importance of implementing strong AI security protocols as Microsoft introduces Copilot Vision, which increases AI’s access to user devices and thereby raises new challenges for securing AI agents.
Insights by Ground AI
Does this summary seem wrong?
Podcasts & Opinions

29 Articles

All
Left
Center
4
Right
Tom's GuideTom's Guide
Center

Copilot Vision just launched on Windows — here’s what it actually does

Microsoft’s new AI feature just launched in the U.S. — and it wants to read your screen so you don’t have to.

Read Full Article
BenzingaBenzinga
Center

Hackers Could Steal Data From Microsoft 365 Copilot Without Phishing Or Malware, Says AI Startup — 'EchoLeak' Flaw Took 5 Months To Fix - Alphabet (NASDAQ:GOOG), Alphabet (NASDAQ:GOOGL)

A critical security flaw was discovered in Microsoft (NASDAQ: MSFT) 365 Copilot, an AI tool integrated into various Microsoft Office applications. This vulnerability could potentially lead to attacks on sensitive data.

·New York, United States
Read Full Article
BleepingComputerBleepingComputer
Center

Zero-click AI data leak flaw uncovered in Microsoft 365 Copilot

A new attack dubbed 'EchoLeak' is the first known zero-click AI vulnerability that enables attackers to exfiltrate sensitive data from Microsoft 365 Copilot from a user's context without interaction.

Read Full Article
Cybersecurity DiveCybersecurity Dive
Center

Critical flaw in Microsoft Copilot could have allowed zero-click attack

Researchers said the vulnerability, dubbed “EchoLeak,” could allow a hacker to access data without any specific user interaction.

Read Full Article
dev.bydev.by

AI Assistant Copilot Has Learned to “See” Applications in Windows

The company introduced Copilot Vision for Windows, an extension of its AI assistant that can “see” and analyze the apps, files, or web pages that the user shares.

Read Full Article
Windows CentralWindows Central

Copilot Vision just launched — and Microsoft already added new features

Microsoft just launched Copilot Vision with support for multitasking, real-time tips, and Highlights to guide users through apps.

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center
Factuality

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

winfuture.de broke the news in on Tuesday, June 10, 2025.
Sources are mostly out of (0)

Similar News Topics

Microsoft

Microsoft

Apps

Apps

Windows 11

Windows 11

Technology

Technology

Artificial Intelligence

Artificial Intelligence

Windows

Windows

News
For You
SearchBlindspotLocal