AI Security Research Portal
Sourcessourceseed2026-07-04ai-securitysecurity-for-aiprompt-injectionenterprise-aidata-exfiltrationincident-analysis

EchoLeak

Capture Summary

Case study of EchoLeak, CVE-2025-32711, a zero-click prompt injection vulnerability in Microsoft 365 Copilot that enabled remote unauthenticated data exfiltration via a crafted email.

Relevance

Collection Notes

Collected as both incident case study and research paper candidate.