Xatolos@reddthat.com to Technology@lemmy.worldEnglish · 2 months agoMicrosoft to host security summit after CrowdStrike disasterarstechnica.comexternal-linkmessage-square42fedilinkarrow-up1243arrow-down17
arrow-up1236arrow-down1external-linkMicrosoft to host security summit after CrowdStrike disasterarstechnica.comXatolos@reddthat.com to Technology@lemmy.worldEnglish · 2 months agomessage-square42fedilink
minus-squarejordanlund@lemmy.worldlinkfedilinkEnglisharrow-up42arrow-down3·2 months agoLess concerned about Crowdstrike since it’s not their product. More concerned about Copilot: https://www.wired.com/story/microsoft-copilot-phishing-data-extraction/
minus-squareWomble@lemmy.worldlinkfedilinkEnglisharrow-up15arrow-down2·2 months agoThat seems a bit of a non-story given that its prefaced on “once the attacker has access to your work email”. Yes once they have that they can do very good spear phishing attacks using copilot, but they could easily do them without copilot too.
Less concerned about Crowdstrike since it’s not their product.
More concerned about Copilot:
https://www.wired.com/story/microsoft-copilot-phishing-data-extraction/
That seems a bit of a non-story given that its prefaced on “once the attacker has access to your work email”. Yes once they have that they can do very good spear phishing attacks using copilot, but they could easily do them without copilot too.