Post #8462

Microsoft says a Copilot bug (CW1226324) let Microsoft 365 Copilot summarize confidential emails, bypassing DLP policies. Since Jan 21, 2026, emails in Sent Items and Drafts with sensitivity labels were processed in Copilot Chat without permission. Microsoft fixed the issue on Feb 3 but hasn’t disclosed impact. 🔗 Details → https://thehackernews.com/2026/02/threatsday-bulletin-openssl-rce-foxit-0.html#copilot-bypassed-dlp-safeguards