Varonis Finds 'Reprompt' Prompt Injection That Exfiltrates Data From Microsoft Copilot
Varonis discovered a prompt injection attack chain that could steal sensitive data from Microsoft Copilot with a single click, bypassing safety filters through double-request and chain-request techniques. Patched January 13, 2026.