Researchers discover zero-click vulnerability in Microsoft Copilot
In a blog posted by the research team, they said that EchoLeak was the first zero-click attack on an AI agent and could hack remotely via an email.
The vulnerability was given the identifier CVE-2025-32711 and rated critical and fixed eventually in May.
The researchers have categorised EchoLeak under a new class of vulnerabilities called 'LLM Scope Violation,' which can lead a large language model to leak internal data without any interaction with the hacker.
Although Microsoft acknowledged the security flow, it confirmed that there had been no instance of exploitation which had impacted users.
Users receive an email that's been designed to look like a business document embedded with a hidden prompt injection that instructs the LLM to extract and exfiltrate sensitive data. When the user asks Copilot a query the email is retrieved into the LLM prompt by Retrieval-Augmented Generation or RAG.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Time of India
4 hours ago
- Time of India
Tech Layoffs 2025: Over 1 lakh jobs cut as Microsoft, Google, Amazon lead mass firings; is AI to blame
Tech Layoffs 2025: Over 1 lakh jobs cut as Microsoft, Google, Infosys lead mass firings The global tech industry is facing one of its toughest years in 2025. More than 100,000 jobs have already been cut across major technology companies. Big names like Microsoft, Intel, Google, and Amazon are all reducing their workforces, citing reasons such as slowing growth, rising operational costs, and the need to shift resources toward artificial intelligence (AI) and automation. These job cuts are affecting workers at all levels—from fresh graduates to senior engineers—across different countries and departments. While companies say the layoffs are necessary to streamline operations and prepare for the future, the impact on employees and the broader tech job market is massive. The shake-up is not just about reducing headcount—it signals a major transformation in how the industry is evolving. Businesses are now focused on becoming leaner and more AI-driven, even if that means letting go of long-standing teams or changing their traditional work models. Microsoft cuts 9,100 jobs in second layoff of the year Microsoft has confirmed that it is laying off about 9,100 employees in July 2025. This is the company's second major round of layoffs this year. In May, Microsoft had already let go of 6,000 workers, mainly from engineering and product roles. by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like Giao dịch CFD với công nghệ và tốc độ tốt hơn IC Markets Đăng ký Undo This new wave represents nearly 4% of the company's total workforce and is affecting departments such as Xbox gaming, sales, legal, and teams behind mobile game titles like Candy Crush. Microsoft says these job cuts are part of a broader plan to reorganize and invest in AI infrastructure, for which it is committing around $80 billion over the next few years. The company is also restructuring its sales teams and outsourcing more work to smaller partners. Intel slashes factory workforce and shuts automotive unit Intel, one of the world's largest semiconductor manufacturers, is cutting up to 20% of its factory workforce, which translates to over 10,000 jobs. These layoffs are scheduled for mid-July and include 107 roles in Silicon Valley, specifically at Intel's Santa Clara headquarters. The company is also shutting down its automotive chip division, which shows that even once-promising product lines are being dropped as Intel tightens its spending. Intel says the decision is part of its plan to deal with 'financial constraints and affordability goals.' The company has faced falling demand in the PC and server markets and is now trying to shift focus toward AI chips and next-gen computing. Google cuts 25% of Google TV staff amid budget reductions At Google, layoffs are affecting more niche product divisions. The Google TV team has seen a 25% reduction, which reportedly accounts for about 75 employees. The budget for the Google TV unit was cut by 10%, prompting the company to downsize its workforce. Additionally, in June, Google began offering buyouts and voluntary exit packages, signalling that more layoffs may follow later this year. These actions come as Google, like many other tech firms, shifts more resources toward AI development and away from smaller or lower-priority products. Amazon begins AI-led downsizing across divisions Amazon has joined the wave of major tech layoffs in 2025, initiating targeted job cuts across several divisions as part of a broader strategy to integrate artificial intelligence into its operations. In June, the company eliminated fewer than 100 roles within its Books division, impacting teams behind Kindle and Goodreads, as it moved to streamline underperforming units. CEO Andy Jassy confirmed in a June memo that Amazon plans to further shrink its corporate workforce, citing the growing role of generative AI in automating repetitive and administrative tasks. Departments such as customer service, software development, human resources, and middle management are expected to face future cuts as AI tools take over internal processes and reduce the need for multiple layers of oversight. Since 2022, Amazon has already laid off more than 27,000 employees, and the trend appears to be continuing as the company prioritizes efficiency and technological advancement in a rapidly evolving digital landscape. Why are so many tech jobs being cut There are several reasons behind the widespread layoffs in the tech industry in 2025: Shifting to AI and automation : Companies are investing billions in AI, cloud infrastructure, and automation technologies. To fund this shift, they are cutting back on roles that don't align with their future direction. Cost cutting : Rising interest rates, inflation, and slower growth have forced many companies to tighten their budgets. Layoffs help reduce immediate costs, especially in departments that are no longer seen as essential. Reorganizing teams : Many tech firms are changing how their teams work. This includes outsourcing, merging departments, and removing duplicated roles across global offices. Decline in some product markets : Demand for products like personal computers, gaming consoles, and smart TVs has decreased. This affects business units tied to these categories, making them prime targets for cuts. Who is being affected? These layoffs are impacting a wide range of roles and experience levels, including: Mid-level developers and engineers at Intel and Microsoft Marketing, sales, and legal teams Gaming and entertainment divisions Regional offices, especially in the US and India This shows that no job category is fully immune. Even high-performing tech employees are vulnerable if their role is not aligned with a company's new priorities. Also read | 'He takes drugs all the time…': Donald Trump admits leaking drug claims about Elon Musk to NYT AI Masterclass for Students. Upskill Young Ones Today!– Join Now
&w=3840&q=100)
Business Standard
4 hours ago
- Business Standard
Microsoft shuts Pakistan office after 25 years amid global overhaul
Tech giant Microsoft has announced to shut down its limited operations in Pakistan as part of its global strategy to reduce workforce, which various stakeholders termed on Friday as a troubling sign for the country's economy. Microsoft, while closing its office in Pakistan on Thursday after 25 years, cited global restructuring and a shift to a cloud-based, partner-led model. The move came as the tech giant cut roughly 9,100 jobs worldwide (or about 4 per cent of its workforce) in its largest layoff round since 2023. Jawwad Rehman, former founding Country Manager of Microsoft Pakistan, urged the government and IT minister to engage with the tech giants with a bold KPI (Key Performance Indicators) driven plan. He said the exit reflected the current business climate. Even global giants like Microsoft find it unsustainable to stay, he posted on LinkedIn. Former Pakistan president Arif Alvi, in a post on X, also expressed concern over Microsoft shutting down operations. It is a troubling sign for our economic future, he wrote. He claimed Microsoft once considered Pakistan for expansion, but that instability led the company to choose Vietnam instead by late 2022. The opportunity was lost, he wrote. Jawwad explained that Microsoft didn't operate a full commercial base in Pakistan, relying instead on liaison offices focused on enterprise, education, and government clients. Over recent years, much of that work had already shifted to local partners, while licensing and contracts were managed from its European hub in Ireland.
Time of India
5 hours ago
- Time of India
Microsoft is cutting thousands of jobs in sales and hiring …
Microsoft is replacing thousands of traditional salespeople with more technical staff following its latest round of layoffs that eliminated approximately 9,000 employees this week. The strategic shift comes as the company faces intensifying competition from OpenAI and Google in the artificial intelligence market. The job cuts, affecting less than 4% of Microsoft's global workforce, specifically targeted conventional sales roles that the company plans to replace with " solutions engineers " who can demonstrate AI tools and provide technical expertise earlier in the sales process. This marks Microsoft's fourth major workforce reduction in 18 months. Customer demands drive Microsoft's shift to technical sales approach "The customer wants Microsoft to bring their technical people in front of them quickly," said a source familiar with the plans. "We need someone who is more technical, much earlier in the cycle." by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like Искате да научите повече за новото BMW 2 Gran Coupe? BMW Научете повече Undo Microsoft has received feedback from enterprise customers that they had to engage with too many salespeople before accessing technical details and product demonstrations. The new approach aims to streamline this process by deploying technically skilled staff who can show actual AI demos from the initial customer contact. Xbox division also hit by the recent layoffs The layoffs hit multiple divisions, with gaming subsidiaries including King, ZeniMax, and Halo Studios bearing significant cuts. Microsoft also shuttered The Initiative studio and canceled high-profile projects like the Perfect Dark reboot and Everwild. Sales chief Judson Althoff outlined the company's vision to become "the Frontier AI Firm " in an internal memo, consolidating six previous sales areas into three: AI Business Solutions, Cloud & AI Platforms, and Security. The restructuring prioritizes establishing "Copilots on every device across every role." Microsoft's AI-related expenses reached $80 billion last fiscal year as it competes against companies like OpenAI, whose ChatGPT remains more recognisable to many enterprise employees despite Microsoft's existing customer relationships. AI Masterclass for Students. Upskill Young Ones Today!– Join Now
