Security News > 2023 > November > Generative AI security: Preventing Microsoft Copilot data exposure

Copilot can access all the sensitive data that a user can access, which is often far too much.
In this post I'm going to focus specifically on data security and how your team can ensure a safe Copilot rollout.
The efficacy of label-based data protection will surely degrade when we have AI generating orders of magnitude more data requiring accurate and auto-updating labels.
We have already seen real-world scenarios in which Copilot drafts a proposal for a client and includes sensitive data belonging to a completely different client.
It's critical to have a sense of your data security posture before your Copilot rollout.
Varonis protects thousands of Microsoft 365 customers with our Data Security Platform, which provides a real-time view of risk and the ability to automatically enforce least privilege.
News URL
https://www.helpnetsecurity.com/2023/11/28/microsoft-copilot-data-exposure/
Related news
- AI agents swarm Microsoft Security Copilot (source)
- After Detecting 30B Phishing Attempts, Microsoft Adds Even More AI to Its Security Copilot (source)
- Week in review: Chrome sandbox escape 0-day fixed, Microsoft adds new AI agents to Security Copilot (source)
- Microsoft raises rewards for Copilot AI bug bounty program (source)
- Microsoft Edge update adds AI-powered Scareware Blocker (source)
- Microsoft shares workaround for Windows security update issues (source)
- AI and Security - A New Puzzle to Figure Out (source)
- Google Chrome's AI-powered security feature rolls out to everyone (source)
- Microsoft expands Copilot bug bounty targets, adds payouts for even moderate messes (source)
- CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks (source)