Safety · Ars Technica ·

Critical Copilot vulnerability allowed hackers to seal 2FA code from users

Critical Copilot vulnerability allowed hackers to seal 2FA code from users

A reported Copilot vulnerability, called SearchLeak, could let attackers extract users' two-factor authentication codes. The piece argues the incident highlights recurring weaknesses in current LLM security approaches.

Read the full story at Ars Technica →