ISSUE 22.41 • 2025-10-13 MICROSOFT 365 By Peter Deegan The release of a new Microsoft 365 subscription plan is good news, although Microsoft is surprisingly reluctant to say that. Whenever Microsoft announces changes in plans — especially “simplifying” pricing — it’s usually a sure sign of a price increase in disguise. Not this time. Microsoft […]

Hidden comments allowed full control over Copilot responses and leaked sensitive information and source code.

The post GitHub Copilot Chat Flaw Leaked Data From Private Repositories appeared first on SecurityWeek.

MICROSOFT 365 By Peter Deegan There was a time when AI was simple. You asked a question (the “prompt”) and you got an answer (the “response”). Now, Microsoft Copilot has many more options and handy features you can use. So do other AI systems. As usual, Microsoft muddies the waters with its usual tricks. For […]

ON SECURITY By Susan Bradley It’s clear that artificial intelligence is going to be with us in some sort of fashion, whether we like it or not. Skeptical as I have been, I must admit that AI has its uses. For example, genealogy researchers find it helps when used to make connections between census documents, […]

I watched an interesting presentation yesterday about the risk of Copilot (slides here). One of the interesting concepts was that having the free version of Copilot was actually the safest option — because it was so limited. Unlike the business versions that enable and expose a lot, the free version limits access. I found that […]

ISSUE 22.26.1 • 2025-07-03 By Susan Bradley There are times when Microsoft drives us crazy, and then there are times when we don’t give Redmond enough credit. This is a time when we probably don’t praise the company enough for doing the right thing. I say this because I recently installed the July Insider preview […]

MICROSOFT 365 By Peter Deegan Don’t totally dismiss artificial intelligence. It’s not all bad. Used with a little caution, it can be a wonderful helper for everyone, not just Microsoft 365 users. I know Copilot and AI are sometimes considered unnecessary. There is an understandable suspicion of AI generally and of Microsoft’s Copilot in particular. […]

For those of us in cybersecurity, there are a lot of unanswered questions and associated concerns about integrating AI into these various products. No small part of our worries has to do with the fact that this is new technology, and new tech always brings with it new security issues, especially technology that is evolving as quickly as AI.

The post Caging Copilot: Lessons Learned in LLM Security appeared first on Black Hills Information Security, Inc..

A common use case for LLMs is rapid software development. One of the first ways I used AI in my penetration testing methodology was for payload generation.

The post Augmenting Penetration Testing Methodology with Artificial Intelligence – Part 2: Copilot appeared first on Black Hills Information Security, Inc..