Microsoft Copilot has been summarizing organizations’ confidential emails – without permission. | Tuta

Microsoft has acknowledged a bug in Microsoft 365 Copilot that allowed the AI assistant to access confidential emails without permission. The bug, which affected the Copilot 'work tab' chat feature, enabled it to read and summarize emails in sent and draft folders, including those marked with confidentiality labels. Microsoft has rolled out a fix, but the incident highlights the security risks of integrating AI assistants into sensitive workflows. Users are advised to consider alternatives for protecting confidential information.