AI Insider·
Insider Brief In June 2025, security researchers at Aim Labs disclosed a vulnerability in Microsoft 365 Copilot that required nothing from the victim at all. An attacker simply sent an email. Hidden inside that email were instructions intended not for the human recipient but for the AI assistant that would eventually read it. Weeks or […]
Read full articleIn late 2025, the security community stopped treating indirect prompt injection as a theoretical risk. It had spent two years as a tidy lab demonstration; then production systems started getting hit. The OWASP Top 10 for LLM applications now ranks prompt injection as the number-one risk, NIST has called indirect injection generative AI’s greatest security […]
Microsoft is continuing its push to bring generative AI (genAI) into Excel, with new Microsoft 365 Copilot skills designed to automate common processes and a “plan” mode to provide more control over Copilot’s outputs when handling financial data. Microsoft made Microsoft 365 Copilot generally available in Excel in late 2024 and since then has added several capabilities, including agentic tools, a Copilot function within Excel, and Python support for advanced data analysis. On Thursday, Microsoft unveiled a skills feature that lets users define processes Copilot can perform in Excel — such as building a discounted cash flow, Microsoft suggested, preparing a variance analysis, or refreshing a monthly reporting model. “Instead of starting from scratch each time, a skill guides Copilot through the steps, applying the right structure and formatting, and helping produce an output that is easier to review, reuse, and trust,” Brian Jones, vice president for Excel at Microsoft, said in a bl
Security researchers classified the incident as a supply chain attack rather than a flaw in Polymarket's core contracts.
The breach highlights the critical need for robust wallet security and may erode trust in Cardano's ecosystem if not addressed swiftly. The post SecondFi wallet vulnerability drains $2.4M in Cardano assets from 178 users appeared first on Crypto Briefing.
Secret Network lost $4.67M due to an infinite-mint exploit on its Axelar bridge, which went undetected for seven days. The vulnerability is now patched.
Security researchers warn that deprecated smart contracts can remain vulnerable long after projects stop maintaining them.
This article is an honest account of the process on why I built a custom AI assistant instead of just paying for one, what the architecture looks like, the actual code, what broke, and what it does now that I genuinely rely on.
The EchoLeak vulnerability highlights the critical need for robust AI security measures to prevent potential data breaches and financial losses. The post Microsoft patches critical vulnerability in M365 Copilot that allowed silent data theft appeared first on Crypto Briefing.
