Security News > 2024 > August > Microsoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 Copilot
2024-08-27 06:09
Details have emerged about a now-patched vulnerability in Microsoft 365 Copilot that could enable the theft of sensitive user information using a technique called ASCII smuggling. "ASCII Smuggling is a novel technique that uses special Unicode characters that mirror ASCII but are actually not visible in the user interface," security researcher Johann Rehberger said. "This means that an attacker
News URL
https://thehackernews.com/2024/08/microsoft-fixes-ascii-smuggling-flaw.html
Related news
- A Hacker's Era: Why Microsoft 365 Protection Reigns Supreme (source)
- Microsoft revised the controversial Copilot+ Recall feature (source)
- Ransomware attackers hop from on-premises systems to cloud to compromise Microsoft 365 accounts (source)
- Microsoft Edge begins testing Copilot Vision (source)
- New Mamba 2FA bypass service targets Microsoft 365 accounts (source)
- Microsoft Delays Windows Copilot+ Recall Release Over Privacy Concerns (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Microsoft 365 Admin portal abused to send sextortion emails (source)
- Microsoft now testing hotpatch on Windows 11 24H2 and Windows 365 (source)