How a simple link allowed hackers to bypass Copilot's security guardrails - and what Microsoft did about it

Reprompt impacted Microsoft Copilot Personal and, according to the team, gave "threat actors an invisible entry point to perform a data‑exfiltration chain that bypasses enterprise security controls ...
GitHub

Parses URLSearchParams to JavaScript objects according to Zod schemas.

$ git clone https://github.com/seamapi/url-search-params-parser.git $ cd url-search-params-parser $ nvm install $ npm install $ npm run test:watch ...

A single click mounted a covert, multistage attack against Copilot

Microsoft has fixed a vulnerability in its Copilot AI assistant that allowed hackers to pluck a host of sensitive user data ...