Last mentioned: Mar 19, 2026
Google Intelligence Report
Google issues a formal warning regarding the transition to exfiltration-only extortion models.
Public Disclosure
Microsoft and security researchers confirm that Copilot has been bypassing DLP to summarize emails.
Mitigation Efforts
Microsoft begins addressing the Office bug to restore data protection policy enforcement.
Bug Emergence
Estimated start of the bug affecting Copilot's DLP enforcement mechanisms.
Profit Compression
Ransomware groups report lower success rates in collecting payments for decryption keys.
Backup Maturity
Widespread adoption of immutable backups reduces the leverage of file encryption.
Google's latest threat intelligence reveals a strategic shift among ransomware operators, who are increasingly abandoning file encryption in favor of pure data exfiltration. This transition, driven by diminishing returns from traditional ransom demands, forces a critical reassessment of corporate defense strategies focused on data privacy over mere system recovery.
A critical vulnerability in Microsoft 365 Copilot allowed the AI assistant to access and summarize confidential emails, bypassing enterprise Data Loss Prevention (DLP) policies. The bug, active since late January 2024, highlights significant security gaps in the integration of generative AI within enterprise productivity suites.
A critical vulnerability in Microsoft 365 Copilot allowed the AI assistant to access and summarize confidential emails, bypassing established Data Loss Prevention (DLP) policies. The bug, active since late January, represents a significant breach of trust for enterprise customers relying on Microsoft's security framework for AI integration.