The Practical 365 Podcast Analysing Copilot's Zero-Day, Outages, M365 Local and New Copilot Agents: Practical 365 Podcast S4 E41
Jul 11, 2025
Dive into the surprising world of AI security as hosts unravel the Microsoft 365 Copilot exploit, known as Echo Leak, and its potential risks. They discuss the chaos of a global outage that impacted major cloud services, highlighting resilience in tech. Discover Microsoft's fresh approach to compliance in Europe with containerized M365, ensuring data sovereignty. The conversation wraps up with insights into new reasoning agents and their significance in business, alongside a witty critique of Apple’s technology.
AI Snips
Chapters
Transcript
Episode notes
Echo Leak Zero-Day Explained
- Copilot's zero-day exploit, dubbed Echo Leak, leveraged email summarization for data exfiltration without user interaction.
- This exploit bypassed message classification and external link detection, showing complex AI prompt injection risks.
Agentic AI Phishing Risk
- Agentic AI systems risk social engineering-like exploits similar to human phishing attacks.
- Future AI agent collaborations could be vulnerable to manipulation through complex prompt injection.
FAA Software Hits Outage
- Paul Robichaux struggled with FAA software access during a global Google and Cloudflare outage.
- The event illustrates the challenges custodians face when infrastructure failures impact service availability.