Microsoft Copilot Cowork Vulnerability Enables File Exfiltration via Indirect Prompt Injection
Microsoft Copilot Cowork is vulnerable to file exfiltration attacks via indirect prompt injection as a result of insecure automatic action approvals for sending Emails and Teams messages.