New attack turned Microsoft 365 Copilot into 1-click data theft tool
A critical vulnerability chain named SearchLeak in Microsoft 365 Copilot Enterprise allows attackers to steal sensitive data from a victim's mailbox, OneDrive, or SharePoint by tricking the user into clicking a specially crafted URL. The attack exploits a combination of a parameter-to-prompt injection, an HTML rendering race condition, and a server-side request forgery (SSRF) in Bing's image search feature to exfiltrate data without user awareness. Microsoft has addressed this vulnerability with an official fix, and no user action is required to mitigate the threat.
AI Analysis
Technical Summary
SearchLeak is a three-stage attack chain targeting Microsoft 365 Copilot Enterprise. It begins with a parameter-to-prompt injection via the 'q' URL parameter, instructing Copilot to search the victim's mailbox or other data sources and format the results in an image URL. Next, an HTML rendering race condition allows attacker-controlled HTML with an <img> tag to execute before sanitization completes. Finally, an SSRF vulnerability in Bing's 'Search by Image' feature causes Bing to fetch the attacker's URL containing the stolen data, bypassing content security policy protections. This chain enables data exfiltration through a single click on a malicious link. Microsoft assigned CVE-2026-42824 to this vulnerability and released a fix at the beginning of June 2026.
Potential Impact
Successful exploitation results in unauthorized exfiltration of sensitive enterprise data including email content (such as access codes and passwords), calendar events, meeting details, documents, and other information accessible via Microsoft 365 Copilot Enterprise Search. The victim is unaware of the data theft as the attack appears as normal Copilot activity. This poses a critical risk to confidentiality of corporate data.
Mitigation Recommendations
Microsoft has released an official fix for CVE-2026-42824 addressing the SearchLeak vulnerability. No user action is required to mitigate this threat as the patch has been applied by Microsoft. Organizations should verify that their Microsoft 365 Copilot Enterprise environment is updated according to Microsoft's guidance.
New attack turned Microsoft 365 Copilot into 1-click data theft tool
Description
A critical vulnerability chain named SearchLeak in Microsoft 365 Copilot Enterprise allows attackers to steal sensitive data from a victim's mailbox, OneDrive, or SharePoint by tricking the user into clicking a specially crafted URL. The attack exploits a combination of a parameter-to-prompt injection, an HTML rendering race condition, and a server-side request forgery (SSRF) in Bing's image search feature to exfiltrate data without user awareness. Microsoft has addressed this vulnerability with an official fix, and no user action is required to mitigate the threat.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
SearchLeak is a three-stage attack chain targeting Microsoft 365 Copilot Enterprise. It begins with a parameter-to-prompt injection via the 'q' URL parameter, instructing Copilot to search the victim's mailbox or other data sources and format the results in an image URL. Next, an HTML rendering race condition allows attacker-controlled HTML with an <img> tag to execute before sanitization completes. Finally, an SSRF vulnerability in Bing's 'Search by Image' feature causes Bing to fetch the attacker's URL containing the stolen data, bypassing content security policy protections. This chain enables data exfiltration through a single click on a malicious link. Microsoft assigned CVE-2026-42824 to this vulnerability and released a fix at the beginning of June 2026.
Potential Impact
Successful exploitation results in unauthorized exfiltration of sensitive enterprise data including email content (such as access codes and passwords), calendar events, meeting details, documents, and other information accessible via Microsoft 365 Copilot Enterprise Search. The victim is unaware of the data theft as the attack appears as normal Copilot activity. This poses a critical risk to confidentiality of corporate data.
Mitigation Recommendations
Microsoft has released an official fix for CVE-2026-42824 addressing the SearchLeak vulnerability. No user action is required to mitigate this threat as the patch has been applied by Microsoft. Organizations should verify that their Microsoft 365 Copilot Enterprise environment is updated according to Microsoft's guidance.
Technical Details
- Article Source
- {"url":"https://www.bleepingcomputer.com/news/security/new-attack-turned-microsoft-365-copilot-into-1-click-data-theft-tool/","fetched":true,"fetchedAt":"2026-06-16T09:30:00.594Z","wordCount":900}
Threat ID: 6a31179b0b89be6888843490
Added to database: 6/16/2026, 9:30:03 AM
Last enriched: 6/16/2026, 9:30:45 AM
Last updated: 6/16/2026, 11:51:43 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.