Microsoft Edge: Summarization, Translation, and Citation will soon be supported by Microsoft Copilot and Microsoft 365 Copilot Chat in our menus

🚨 The Signal: Microsoft Edge will integrate Copilot for summarization, translation, and citation of highlighted content. This expands AI-driven content processing within the browser, increasing potential for data exposure and prompt injection risks.

The Impact

All users are affected, increasing the risk of sensitive data exposure and prompt injection via browser-based AI features.

• End users: Risk of inadvertently exposing sensitive data to Copilot.
• Security teams: New vectors for prompt injection attacks.
• Data owners: Potential for data exfiltration if not properly governed.
• Compliance teams: Need to review data handling policies for AI features.

The Action

1. Review and update existing Microsoft Edge policies to manage Copilot integration.
2. Educate users on responsible AI use, especially regarding sensitive information.
3. Implement data loss prevention (DLP) policies to monitor data shared with Copilot.
4. Monitor Copilot usage logs for unusual activity or data patterns.
5. Assess and update your organisation's AI governance framework to include browser-based AI.

Domain: Agentic-AI · Impact: high · Workload: M365 Apps