How to Weaponize Microsoft Copilot for Cyberattackers

At Black Hat USA, security researcher Michael Bargury released a "LOLCopilot" ethical hacking module to demonstrate how attackers can exploit Microsoft Copilot — and offered advice for defensive tooling.

Follow Dark Reading:

August 09, 2024

LATEST SECURITY NEWS & COMMENTARY How to Weaponize Microsoft Copilot for Cyberattackers At Black Hat USA, security researcher Michael Bargury released a "LOLCopilot" ethical hacking module to demonstrate how attackers can exploit Microsoft Copilot — and offered advice for defensive tooling. '0.0.0.0 Day' Flaw Puts Chrome, Firefox, Mozilla Browsers at RCE Risk Attackers can use a seemingly innocuous IP address to exploit localhost APIs to conduct a range of malicious activity, including unauthorized access to user data and the delivery of malware. Critical AWS Vulnerabilities Allow S3 Attack Bonanza Researchers at Aqua Security discovered the "Shadow Resource" attack vector and the "Bucket Monopoly" problem, where threat actors can guess the name of S3 buckets based on their public account IDs. SaaS Apps Present an Abbreviated Kill Chain for Attackers Black Hat presentation reveals adversaries don't need to complete all seven stages of a traditional kill chain to achieve their objectives. Microsoft on CISOs: Thriving Community Means Stronger Security Microsoft execs detailed the company's reaction to the CrowdStrike incident and emphasized the value of a collective identity. Knostic Wins 2024 Black Hat Startup Spotlight Competition During a "Shark Tank"-like final, each startup's representative spent five minutes detailing their company and product, with an additional five minutes to take questions from eight judges from Omdia, investment firms, and top companies in cyber. Building an Effective Strategy to Manage AI Risks As AI technologies continue to advance at a rapid pace, privacy, security and governance teams can't expect to achieve strong AI governance while working in isolation. MORE NEWS / MORE COMMENTARY HOT TOPICS Hazy Issue in Entra ID Allows Privileged Users to Become Global Admins Invisible authentication mechanisms in Microsoft allow any attacker to escalate from privileged to super-duper privileged in cloud environments, paving the way for complete takeover. CrowdStrike Will Give Customers Control Over Falcon Sensor Updates The security vendor has also implemented several changes to protect against the kind of snafu that crashed 8.5 million Windows computers worldwide last month. The API Security Crisis: Why Your Company Could Be Next You're only as strong as your weakest security link. MORE PRODUCTS & RELEASES Verizon Business 2024 Mobile Security Index Reveals Escalating Risks in Mobile and IoT Security Cybersecurity Industry Leaders Launch the Cyber Threat Intelligence Capability Maturity Model Votiro Unveils New Data Privacy Features and Integrations Dataprise Acquires Phoenix IT Adding Cyber Incident Response & Remediation Services MORE PRODUCTS & RELEASES EDITORS' CHOICE Attackers Use Multiple Techniques to Bypass Reputation-Based Security Protections like Windows Smart App Control are useful but susceptible to attacks that allow threat actors initial access to an environment without triggering any alerts. LATEST FROM THE EDGE Healthcare Providers Must Plan for Ransomware Attacks on Third-Party Suppliers The American Hospital Association and the Health-ISAC issued a joint threat bulletin warning healthcare IT providers that their ransomware plans need to consider third-party risk. LATEST FROM DR TECHNOLOGY Memory Safety Is Key to Preventing Hardware Hacks Spectre and Meltdown exposed just how easy a target computer memory was for attackers. Several efforts are underway to protect memory. LATEST FROM DR GLOBAL Sophisticated Android Spyware Targets Users in Russia Researchers say "LianSpy" malware has been in use in a covert data gathering operation that's gone undetected for at least three years. WEBINARS Securing Your Cloud Assets CISO Perspectives: How to make AI an Accelerator, Not a Blocker View More Dark Reading Webinars >> WHITE PAPERS How to Use Threat Intelligence to Mitigate Third-Party Risk Managing Third-Party Risk Through Situational Awareness OT Cybersecurity Glossary & Quick Start Guide 5 Critical Controls for World-Class OT Cybersecurity Tracking the Untrackable: Taking a Proactive Approach to Emerging Risks Google Cloud Threat Horizons Report, H1 2024 Google Threat Intelligence View More White Papers >> FEATURED REPORTS Managing Third-Party Risk Through Situational Awareness 2024 InformationWeek US IT Salary Report View More Dark Reading Reports >>

Dark Reading Daily -- Published By Dark Reading Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. Thoughts about this newsletter? Give us feedback. Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our Privacy Statement.

© 2024 | Informa Tech | Privacy Statement | Terms & Conditions | Contact Us