AI Tools & Products

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

AI Quick Briefs Editorial Desk · June 15, 2026
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes

What happened

Researchers at Varonis Threat Labs uncovered a critical vulnerability in Microsoft 365 Copilot Enterprise Search that allowed attackers to extract sensitive information with a single click. The exploit, dubbed SearchLeak, chains three separate bugs to pull emails, calendar data, and indexed files from a victim’s account. What made this attack notable was that the malicious link pointed to a legitimate microsoft.com domain. This bypassed conventional anti-phishing and URL filtering protections, making detection and blocking much harder for defenders.

The risk

This flaw exposed a direct path for attackers to grab valuable corporate data, including multifactor authentication (MFA) codes tied to Microsoft 365 accounts. With one click on a trusted Microsoft link, victims could have their inbox contents, scheduled meetings, and document indexes stolen silently. MFA codes theft can lead to account takeover even if credentials are not compromised. The issue demonstrated how vulnerabilities in AI-powered enterprise search can open unexpected routes for exfiltration and fraud, increasing the attack surface for Microsoft customers.

Why it matters

Microsoft 365 is deeply embedded in enterprise workflows, and Copilot is designed to boost productivity by consolidating data from emails, documents, and calendars. A flaw that lets attackers bypass security filtering not only increases the risk of data breaches but also challenges trust in these AI-driven tools. For IT teams, this raises operational risk and forces immediate reassessments of linked app permissions and security monitoring. For security buyers, it underscores the need to verify vendor security claims, even when strong authentication methods like MFA are in place. This kind of exploit shifts power toward attackers by weaponizing trusted domains, thus raising the bar for enterprise security vigilance.

Who should pay attention

Security teams in organizations using Microsoft 365 Copilot Enterprise Search should prioritize immediate patching and scrutiny of suspicious activity. Decision makers must understand that AI tools expanding data access can introduce new vulnerabilities despite trusted branding. CIOs and CISOs need to ensure security layers extend beyond traditional URL or phishing filters to behavioral monitoring and anomaly detection. Investors and IT service providers handling Microsoft cloud environments should factor enhanced risk in defense posture when designing solutions or underwriting security.

What to watch next

Watch how Microsoft responds with patch deployment and communication about mitigation steps. Security vendors will likely update their detection rules to counter threats exploiting trusted domains. Expect increased pressure on Microsoft and other cloud vendors to bolster security controls around AI integrations that access sensitive user data. This incident may also accelerate innovation in secure search architectures and more robust MFA implementations designed to counter token theft. Enterprises should watch for new attack patterns leveraging trusted internal services as entry points.

AI Quick Briefs Editorial Desk

Read Full Article →
Related
7 ways AI can help with your Linux system management
7 ways AI can help with your Linux system management
Google Maps vs. Waze: I’ve driven 100+ miles with the two best navigation apps – this one’s better
Google Maps vs. Waze: I’ve driven 100+ miles with the two best navigation apps – this one’s better
I’ve reviewed every PDF editor out there – then I had ChatGPT build me a better one
I’ve reviewed every PDF editor out there – then I had ChatGPT build me a better one
Stay ahead of AI Get the most important AI news delivered to your inbox — free.
Subscribe →