VentureBeat

Microsoft patched a Copilot Studio prompt injection. The data exfiltrated anyway

Microsoft assigned CVE-2026-21520, a CVSS 7.5 indirect prompt injection vulnerability, to Copilot Studio. Capsule Security discovered the flaw, coordinated disclosure with Microsoft, and the patch was ...
ZDNet

Microsoft's upgraded Copilot Studio is like a LEGO set for building AI agents

Microsoft is conducting "AI tours" in 60 cities. These one-day events are designed to connect AI-curious business folk with Microsoft engineers and sales teams to help explore what Microsoft is ...

Microsoft 365 Copilot Notebooks gets new tools to turn documents into mind maps and more0 0

The refreshed interface of Copilot Notebooks in the Microsoft 365 Copilot app now consolidates chats, creations, and ...
Bleeping Computer

New CoPhish attack steals OAuth tokens via Copilot Studio agents

A new phishing technique dubbed 'CoPhish' weaponizes Microsoft Copilot Studio agents to deliver fraudulent OAuth consent requests via legitimate and trusted Microsoft domains. The technique was ...
Visual Studio Magazine

Copilot Rolled Out to Your Org? Better Check User Activity

Many organizations jumped on the Gen AI bandwagon in a big way, immediately appointing AI execs and rolling out AI assistants to many -- if not all -- employees. For us here at Visual Studio Magazine, ...
Redmond Magazine

Microsoft Introduces 'Computer Use' Automation in Copilot Studio

Microsoft has announced a new AI-powered feature called "computer use" for its Copilot Studio platform that allows agents to directly interact with Web sites and desktop applications using simulated ...