A Microsoft Office AI Bug允许副驾驶在未经允许的情况下从1月到2024年2月擅自进入私人电子邮件,该邮件于2月被固定,没有第三方接触的证据。 A Microsoft Office AI bug let Copilot access private emails without permission from Jan to Feb 2024, fixed in February with no evidence of third-party exposure.

微软办公室的Abug in Microsoft Office Compilot AI允许它不经授权在Sent Projects和草稿中存取和总结机密电子邮件,在2024年1月至2月初期间绕过数据保护控制。 A bug in Microsoft Office’s Copilot AI allowed it to access and summarize confidential emails in Sent Items and Drafts without authorization, bypassing data protection controls from January to early February 2024. 微软公司确认了该问题,确定为CW1226324,并于2月安装了固定装置,声称没有第三方暴露。 Microsoft confirmed the issue, identified as CW1226324, and deployed a fix in February, stating no third parties were exposed. 这种缺陷引起了隐私和合规方面的关切,特别是在受管制行业,尽管微软公司没有披露受影响的用户或出入控制失败的原因。 The flaw raised privacy and compliance concerns, particularly in regulated industries, though Microsoft has not disclosed affected users or the cause of the access control failure. 促请各组织核查补丁,审查DLP日志,并加强AI访问控制。 Organizations are urged to verify patches, review DLP logs, and strengthen AI access controls.