Microsoft Copilot Ignored Sensitivity Labels, Processed Confidential Emails

A code error in Copilot Chat’s “Work” tab allowed the AI to pull emails from users’ Sent Items and Drafts folders — even when those emails carried confidentiality labels and had DLP rules explicitly ...

Microsoft Copilot ignored sensitivity labels twice in eight months — and no DLP stack caught either one

Microsoft's CW1226324 advisory confirms Copilot bypassed sensitivity labels and DLP policies for four weeks. Combined with EchoLeak (CVE-2025-32711), it reveals a structural blind spot in enterprise ...

Microsoft says bug causes Copilot to summarize confidential emails

Microsoft says a Microsoft 365 Copilot bug has been causing the AI assistant to summarize confidential emails since late ...
ExtremeTech

Microsoft Confirms Copilot Bug Let AI Summarize Confidential Emails

Microsoft has confirmed that a bug in Microsoft 365 Copilot Chat allowed the AI to summarize confidential emails in violation of certain data loss prevention policies. The issue affected Copilot's ...
WinBuzzer

Microsoft Patches Copilot Bug, Extends Protection for Confidential Documents

Microsoft has patched a Copilot bug that exposed confidential Outlook emails and expanded DLP controls to cover all storage locations via Microsoft Purview.
JD Supra

M365 Academy: The Power of Sensitivity Labels in Microsoft 365

Summary: Read takeaways from our recent M365 Academy webinar on sensitivity labels, which covered how labels support governance across M365, from taxonomy design and classification to Copilot ...