THREATOPS
THREAT OPSThreat News › SearchLeak: How We Turned M365 Copilot Into a One-Click Data Exfiltration Weapon

SearchLeak: How We Turned M365 Copilot Into a One-Click Data Exfiltration Weapon

medvaronis_blogPublished 2026-06-15

<p><a href="https://www.varonis.com/varonis-threat-labs?hsLang=en">Varonis Threat Labs</a> has uncovered a new three-stage vulnerability chain that turns Microsoft 365 Copilot Enterprise Search into a silent data exfiltration weapon.</p> <p>Dubbed SearchLeak, the chain combines a relatively new class of AI-specific vulnerability known as Parameter-to-Prompt Injection (P2P) with two classic web s

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://www.varonis.com/blog/searchleak