Product

Copilot

2 briefs RSS

CVE-2026-41090: Microsoft Copilot Command Injection Vulnerability

CVE-2026-41090 is a command injection vulnerability in Microsoft Copilot, allowing an unauthorized attacker to perform tampering over a network.

Copilot cve command injection microsoft

2r 2t 1c 3w ago

medium advisory

GenAI Process Connection to Unusual Domain on macOS

2 rules 1 TTP

This rule detects GenAI tools on macOS connecting to unusual domains, potentially indicating command and control activity, data exfiltration, or malicious payload retrieval following compromise via prompt injection, malicious MCP servers, or poisoned plugins.

Copilot +22 genai command and control macos network connection

2r 1t May 2, 2024