Microsoft Copilot bug exposed confidential emails for weeks
A Microsoft 365 Copilot bug has been summarizing confidential emails since late January, bypassing data loss prevention policies meant to protect sensitive information. The bug allowed Copilot Chat to read and outline contents of emails in users' Sent Items and Drafts folders, even those with confidentiality labels.
Microsoft began rolling out a fix in early February but hasn't disclosed how many users or organizations were affected. The disclosure comes days after the European Parliament blocked AI tools on lawmakers' devices citing similar security concerns.
View full digest for February 19, 2026