Microsoft Copilot ignored sensitivity labels twice in eight months — and no DLP stack caught either one

Microsoft's CW1226324 advisory confirms Copilot bypassed sensitivity labels and DLP policies for four weeks. Combined with EchoLeak (CVE-2025-32711), it reveals a structural blind spot in enterprise ...
Redmond Magazine

Sensitivity Labels for Microsoft 365 Copilot, Part 1: Setup

Sensitivity labels and label policies have been a part of Microsoft 365 for quite some time. Even so, organizations might consider revisiting the feature now that Microsoft Copilot has been released.
WinBuzzer

Microsoft Patches Copilot Bug, Extends Protection for Confidential Documents

Microsoft has patched a Copilot bug that exposed confidential Outlook emails and expanded DLP controls to cover all storage locations via Microsoft Purview.
Redmond Magazine

Sensitivity Labels for Microsoft 365 Copilot, Part 2

In Part 1 of this series, I walked you through the process of creating a sensitivity label that could be used to restrict Microsoft 365 Copilot from accessing certain types of content. Now, I want to ...