Copilot Studio
-
RoguePilot flaw in GitHub Codespaces could have leaked GITHUB_TOKEN, researcher says
A flaw named RoguePilot let attackers hide Copilot instructions in a GitHub issue to manipulate Codespaces and leak a privileged GITHUB_TOKEN. Orca Security published a technical analysis and Microsoft patched the issue after disclosure.
-
Researchers warn ‘CoPhish’ uses Microsoft Copilot Studio agents to harvest OAuth tokens
Datadog Security Labs disclosed “CoPhish,” a phishing method that uses Microsoft Copilot Studio agents and legitimate Microsoft-hosted demo pages to deliver fraudulent OAuth consent flows and harvest session tokens; Microsoft says it will address the issue in a future update and both vendors recommend tightening admin privileges and consent policies.
