Microsoft Copilot (Microsoft 365): Rich Bing web answer cards on M365 Copilot

🚨 The Signal: Microsoft 365 Copilot will now display rich Bing web answer cards for relevant queries. This expands Copilot's information sources beyond internal M365 data, potentially increasing exposure to external web content and associated risks.

The Impact

All Copilot users are affected, with a low security risk related to the expanded scope of information sources.

• End Users: May receive external web content, increasing potential for misinformation or unverified data.
• Security Teams: Need to understand the scope of external data sources and their implications for data governance.
• Compliance Teams: Must review policies regarding external content integration within M365 Copilot.
• Administrators: Should be aware of the expanded data sources for troubleshooting and user guidance.

The Action

1. Review existing Copilot data governance policies to ensure they account for external web content.
2. Communicate to end-users that Copilot responses may now include information from Bing web searches.
3. Monitor Microsoft documentation for any new controls related to Bing web integration in Copilot.
4. Assess the implications for data residency and sovereignty if external web content is cached or processed.

Domain: Agentic-AI · Impact: low · Workload: M365 Apps