58
EchoLeak — send an email, extract secret info from Microsoft Office 365 Copilot AI
(pivot-to-ai.com)
this post was submitted on 15 Jun 2025
58 points (100.0% liked)
TechTakes
1968 readers
471 users here now
Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.
This is not debate club. Unless it’s amusing debate.
For actually-good tech, you want our NotAwfulTech community
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
It is very tangential here, but I think this whole concept of "searching everything indiscriminately" can get a little bit ridiculous, anyway. For example, when I'm looking for the latest officially approved (!) version of some document in SharePoint, I don't want search to bring up tons of draft versions that are either on my personal OneDrive or had been shared with me at some point in the past, random e-mails etc. Yet, apparently, there is no decent option for filtering, because supposedly "that's against the philosophy" and "nobody should even need or want such a feature" (why not???).
In some cases, context and metadata is even more important than the content of a document itself (especially when related to topics such as law/compliance, accounting etc.). However, maybe the loss of this insight is another collateral damage of the current AI hype.
Edit: By the way, this fits surprisingly well with the security vulnerability described here. An external email is used that purports to contain information about internal regulations. What is the point of a search that includes external sources for this type of questions, even without the hidden instructions to the AI?