A critical security flaw in Microsoft 365 Copilot lets the AI assistant summarize emails protected by confidentiality sensitivity labels. This bypasses Data Loss Prevention (DLP) policies, exposing sensitive organizational data to unauthorized AI processing. Tracked under Microsoft reference CW1226324, the issue surfaced on February 4, 2026, and persists as of mid-February. Copilot’s “Work Tab” Chat […] The post Microsoft 365 Copilot Vulnerability Exposes Sensitive Emails to AI Summarization appeared first on Cyber Security News.