Microsoft 365 admin center: Usage reports - Microsoft 365 Copilot - usage intensity

🚨 The Signal: Microsoft 365 Copilot usage reports now include prompt counts and active usage days per user. This provides visibility into Copilot adoption and potential data exposure risks from user prompting patterns.

The Impact

Security teams and administrators are affected by new visibility into Copilot usage, which can highlight risks related to sensitive data exposure via prompts.

• Security Teams: Risk of sensitive data exposure through unmonitored Copilot prompts.
• Administrators: New data for monitoring Copilot adoption and identifying potential misuse.
• Compliance Officers: Ability to audit Copilot usage patterns for policy adherence.
• Data Owners: Insights into how their data might be accessed or processed by Copilot.

The Action

1. Review Copilot usage reports in Microsoft 365 admin center for prompt intensity.
2. Develop or refine Copilot data governance policies based on usage patterns.
3. Educate users on responsible prompting and data handling with Copilot.
4. Monitor for unusual prompt activity that might indicate data exfiltration attempts.

Domain: Agentic-AI · Impact: medium · Workload: Other