OneNote: Copilot Notebook in OneNote iPhone and iPad

🚨 The Signal: Copilot Notebooks are now available on OneNote for iPhone and iPad. This expands AI-driven content generation and summarization capabilities to mobile devices, increasing potential data exposure and the attack surface for prompt injection.

The Impact

All users are affected by the expansion of AI capabilities to mobile, increasing the risk of data leakage and prompt injection attacks.

• End users: Increased risk of inadvertently exposing sensitive data via AI prompts.
• Security teams: New mobile endpoint for AI interaction requires monitoring and policy enforcement.
• Data owners: Expanded data processing locations for sensitive information via Copilot.
• Compliance officers: Challenges in maintaining data residency and usage policies on mobile.

The Action

1. Review and update existing Microsoft Purview Data Loss Prevention (DLP) policies to include OneNote on mobile devices.
2. Configure Microsoft Intune App Protection Policies (APP) for OneNote to restrict data transfer and enforce encryption on mobile.
3. Educate users on secure prompting practices and the risks of sharing sensitive information with AI on mobile devices.
4. Monitor Microsoft Entra sign-in logs and Microsoft Defender for Cloud Apps for unusual activity related to OneNote mobile and Copilot usage.
5. Assess and update your organisation's AI usage policy to specifically address mobile Copilot interactions and data handling.

Domain: Agentic-AI · Impact: high · Workload: M365 Apps