Military & Security

A single click on a Microsoft link could have drained your inbox. Here’s how SearchLeak worked.

AI Quick Briefs Editorial Desk · June 15, 2026
A single click on a Microsoft link could have drained your inbox. Here’s how SearchLeak worked.

What happened

Security researchers at Varonis Threat Labs uncovered a vulnerability chain in Microsoft 365 Copilot Enterprise Search called SearchLeak. The flaw allowed attackers to steal emails, calendar data, and indexed files using a single click on a maliciously crafted URL hosted on a legitimate microsoft.com domain. Because the link came from Microsoft’s own domain, traditional anti-phishing defenses and URL filters would likely not block it.

The risk

SearchLeak exposes a critical risk that trusted domains can be weaponized to bypass existing email security layers. Attackers could silently extract sensitive corporate or personal data without the user realizing it. The vulnerability targets Microsoft’s search indexing feature within its AI-driven Copilot tool, affecting organizations relying on Microsoft 365 for email, calendars, and file management.

Why it matters

For IT and security operators, SearchLeak tightens the urgency around zero-trust assumptions, even for links coming from verified corporate domains. It raises the cost of relying on domain-based trust models and forces a reevaluation of endpoint and mailbox permissions in AI-powered enterprise suites. Businesses should expect increased pressure to enforce strict data access controls within Microsoft 365 and boost anomaly detection to spot abnormal search queries and data exfiltration attempts.

Who should pay attention

Security teams managing Microsoft 365 environments must prioritize patching and reviewing permissions related to the Copilot Enterprise Search feature. Organizations should audit how search indexes are generated and accessed, especially if they allow broad query scopes that could be exploited. Compliance officers and risk managers should assess potential exposure from indexed emails and files since this flaw specifically targets them.

What to watch next

Watch for Microsoft’s official patches and recommended configuration changes. Follow Varonis and other security labs for proof-of-concept details to understand the attack mechanics deeply. Expect increased focus on securing AI integrations and data indexing services in cloud productivity platforms. Vendors may also accelerate zero-trust models and advanced behavioral monitoring to catch similar threats that bypass domain-based filters.

AI Quick Briefs Editorial Desk

Read Full Article →
Related
The Pentagon’s AI platform went from 80,000 users to 1.5 million in six months
The Pentagon’s AI platform went from 80,000 users to 1.5 million in six months
Meta face recognition for its glasses came from a Pentagon contractor, WIRED reports
Meta face recognition for its glasses came from a Pentagon contractor, WIRED reports
Pokémon Go data helped train AI now linked to military drones
Pokémon Go data helped train AI now linked to military drones
Stay ahead of AI Get the most important AI news delivered to your inbox — free.
Subscribe →