AI compromise in action: Inside the world's first Copilot vulnerability

Book This Session

Overview

Your company just got hacked through your M365 Copilot, and you didn't notice a thing. This was the reality with Echoleak, the first real-world vulnerability discovered in Microsoft 365 Copilot. A true zero-click attack that could lead to your sensitive data being handed over to an attacker. In this session, we take a deep dive into how EchoLeak works, what are the technical vulnerabilities it highlights in AI systems, and the techical controls available to mitigate these risks. You'll learn how AI systems are vulnerable to attack vectors that completely bypass traditional security thinking and discover the defenses you can build into your own AI solutions.

Speaker

Miska Kytö

Miska Kytö

Microsoft MVP | Cybersecurity & AI Professional

Miska is a sharp and creative consultant with a solid background in cybersecurity, specializing in security operations and AI security. Currently working at Zure, he has experience in managing and developing security in both small and large environments, from Microsoft 365 to Azure. Miska is also a Microsoft MVP, having been awarded as the youngest MVP in Europe.