Microsoft patches critical Copilot vulnerability after researchers exploit 2FA code theft
Microsoft fixed a critical Copilot vulnerability after researchers demonstrated how it could steal 2FA codes from emails. The exploit used a URL parameter to bypass guardrails.