Microsoft Copilot (Microsoft 365): Voice chat in Microsoft 365 Copilot

🚨 The Signal: Microsoft 365 Copilot now supports voice input, enabling hands-free interaction. This expands data input vectors, increasing potential for prompt injection and sensitive data exposure via audio transcription.

The Impact

All users interacting with Copilot are affected, increasing the risk of inadvertent sensitive data exposure and prompt injection via voice.

• End users: Risk of inadvertently exposing sensitive information through voice commands.
• Security teams: Increased attack surface for prompt injection via spoken input.
• Compliance officers: New data input vector requires review of data handling and privacy policies.
• Administrators: Need to understand and manage new data flow for voice transcription.

The Action

1. Review and update data classification and handling policies to include voice input.
2. Educate users on best practices for interacting with Copilot via voice, emphasizing sensitive data.
3. Monitor Copilot usage logs for unusual voice-based interactions or data access patterns.
4. Assess existing prompt engineering guidelines for applicability to voice-based prompts.
5. Evaluate Microsoft Purview Data Loss Prevention (DLP) policies for voice transcription data.

Domain: Agentic-AI · Impact: high · Workload: M365 Apps