
promptarmor.com
May 25, 2026
5 min read
60/100
Summary
Microsoft Copilot Cowork is susceptible to file exfiltration attacks through indirect prompt injection due to insecure automatic action approvals for sending emails and Teams messages. This vulnerability has shown a high success rate against advanced models, including Claude Opus 4.7.
Key Takeaways
Community Sentiment
Positives
Concerns

ChatGPT for Google Sheets is vulnerable to data exfiltration and phishing
May 31, 2026

Ramp's Sheets AI Exfiltrates Financials
Apr 29, 2026

Snowflake AI Escapes Sandbox and Executes Malware
Mar 18, 2026

GitLost: We Tricked GitHub's AI Agent into Leaking Private Repos
Jul 8, 2026

A GitHub Issue Title Compromised 4k Developer Machines
Mar 5, 2026