BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//hack-lu-2024//talk//NNFQ3G
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-hack-lu-2024-NNFQ3G@pretalx.com
DTSTART;TZID=CET:20241024T101500
DTEND;TZID=CET:20241024T104500
DESCRIPTION:The good: There's an insider working at your competition\, help
 ing you.\nThe bad: There's also an insider working at your business\, help
 ing the competition.\nThe ugly: It's Microsoft Copilot.\n\nThe race to cap
 ture the benefits of GenAI is already at full speed\, and everybody is div
 ing head-first into putting corporate data and operations in the hands of 
 AI. The concept of a Copilot has emerged as a way to keep AI tamed and und
 er control. However\, while employees rarely cross the lines and become ro
 gue\, it turns out that Microsoft Copilot is rogue by design. \n\nIn this 
 talk\, we will show how your Copilot Studio bots can easily be used to exf
 iltrate sensitive enterprise data circumventing existing controls like DLP
 . We will show how a combination of insecure defaults\, over permissive pl
 ugins and wishful design thinking makes data leakage probable\, not just p
 ossible. We will analyze how Copilot Studio puts enterprise data and opera
 tions in the hands of GenAI\, and expose how this exacerbates the prompt i
 njection attack surface\, leading to material impact on integrity and conf
 identiality.\n\nNext\, we will drop CopilotHunter\, a recon and exploitati
 on tool that scans for publicly accessible Copilots and uses fuzzing and G
 enAI to abuse them to extract sensitive enterprise data. We will share our
  findings targeting thousands of accessible bots\, revealing sensitive dat
 a and corporate credentials.\n\nFinally\, we will offer a path forward by 
 sharing concrete configurations and mistakes to avoid on Microsoft’s pla
 tform\, and generalized insights on how to build secure and reliable Copil
 ots.
DTSTAMP:20260422T082931Z
LOCATION:Europe - Main Room
SUMMARY:The good\, the bad\, and the ugly: Microsoft Copilot - Inbar Raz
URL:https://pretalx.com/hack-lu-2024/talk/NNFQ3G/
END:VEVENT
END:VCALENDAR