How Microsoft’s Copilot AI Accessed Confidential Outlook Emails
The company confirmed to Bleeping Computer that a Microsoft 365 Copilot bug allowed the AI assistant to summarise confidential emails since late January. The bug, identified as CW1226324, was first detected on January 21, and it reportedly affects the Copilot “work tab” chat feature.
The flaw causes Copilot to read and summarise emails stored in users’ Sent Items and Drafts folders, including messages protected with confidentiality labels designed to restrict access by automated processing.
The bug reportedly bypassed Data Loss Prevention (DLP) policies, which organisations rely on to safeguard sensitive information. Microsoft reportedly acknowledged the issue, saying, “Users’ email messages with a confidential label applied are being incorrectly processed by Microsoft 365 Copilot chat”. The company reportedly said that the ‘work tab Chat’ feature was summarising such emails despite sensitivity labels and DLP policies being in place.
The company reportedly attributed the issue to an unspecified code error and said it began rolling out a fix in early February. The report further states that as of Wednesday, the company said it continues to monitor the deployment and is contacting a subset of affected users to confirm the fix is functioning.
Microsoft has not disclosed how many users are affected by this bug. The latest bug comes as Microsoft expands to AI capabilities across Outlook, Word, Excel, and PowerPoint. The company launched new AI-powered shopping features for Copilot in the Edge browser late last year.