Microsoft Copilot (Microsoft 365): Copilot Chat-centered experience for creating new documents in the Microsoft 365 Copilot app on iPhone and iPad

🚨 The Signal: Copilot on iPhone/iPad now offers a chat-based interface for document creation. This expands the attack surface for data leakage and prompt injection via mobile devices, requiring vigilance over data handling and user education.

The Impact

All users are affected, increasing the risk of sensitive data exposure and prompt injection through mobile Copilot interactions.

• End-users: Increased risk of inadvertently exposing sensitive data via prompts.
• Security Teams: New mobile vector for prompt injection and data exfiltration.
• Admins: Need to review mobile device data handling policies for AI interactions.
• Compliance Teams: Potential for non-compliance with data residency/privacy regulations.

The Action

1. Review and update existing Microsoft Purview Data Loss Prevention (DLP) policies to include Copilot interactions on mobile devices.
2. Educate users on best practices for prompting Copilot, emphasizing avoidance of sensitive data in prompts.
3. Implement Microsoft Intune Mobile Application Management (MAM) policies to restrict data flow from Copilot on unmanaged devices.
4. Monitor Microsoft 365 audit logs for unusual Copilot activity related to document creation on mobile devices.
5. Review Microsoft Entra Conditional Access policies to ensure appropriate controls for mobile access to Copilot.

Domain: Agentic-AI · Impact: high · Workload: M365 Apps