🚨 Detecting External Copilot Prompt Attacks 🚨 Varonis’ latest SearchLeak research shows how attackers can chain P2P injection, HTML injection, and SSRF to coerce enterprise Copilot into leaking sensitive data. varonis.com/blog/searchleak Although Microsoft has patched CVE‑2026‑42824, defenders now face a new reality: knowing the URL format that can trigger Copilot prompts means adversaries can weaponize links in email, Teams, and Office documents to break guardrails and exfiltrate data. To counter this, defenders must monitor for suspicious link activity that could coerce users into executing external Copilot prompts. Below is a KQL detection designed to surface potential external threats where attackers attempt to force Copilot into unsafe prompting behavior. github.com/SlimKQL/Detection… #Cybersecurity #CopilotPrompt #DataExfiltration

🧠 Mental Health Awareness Month Reminder Nonprofit friends—you’re doing meaningful, mission-driven work every day. It’s easy to forget just how much impact you’re making. This week’s Prompt of the Week is your permission slip to pause and appreciate yourself. 🫵 Reminder: You’re Kind of a Big Deal 💌 Use Copilot Chat to uncover hidden praise in your inbox or Teams chats with this prompt: "Using the emails in my Outlook folder [Folder Name], summarize the recognition I have received. For each email, provide a brief summary including the project or topic, the recognition given, and who provided it. Then, compile a polished paragraph highlighting key themes of my contributions and impact.“ ✨ Why this matters for nonprofits: ✅ Burnout is real—especially in purpose-driven roles. ✅ Recognizing your wins builds resilience and boosts morale. ✅ Reflecting on your impact can refuel your passion for the cause. Whether you’re running programs, managing volunteers, or building community, YOU are making a difference. Let Copilot help you see it in writing. 🖤 #MentalHealthAwarenessMonth #NonprofitLife #CopilotPrompt #YoureKindOfABigDeal