Post Thumbnail

Closed Microsoft and Google repositories found accessible to Copilot

Israeli company Lasso, specializing in cybersecurity in the field of generative artificial intelligence, discovered a serious security issue: data that was accessible on the internet even for a short time continues to exist in the memory of AI chatbots even after being deleted or switched to private mode.

The scale of the problem turned out to be impressive: more than 20,000 GitHub repositories, which are now private, are still accessible through Microsoft Copilot. This vulnerability affects over 16,000 organizations, including tech giants such as Google, IBM, PayPal, Tencent, and Microsoft itself.

The story began when Lasso discovered its own repository, which was accidentally made public for a short time, in Copilot’s responses. “If you browse the web, you won’t see this data. But any person in the world can ask Copilot the right question and get this information,” explains Lasso co-founder Ofir Dror.

The research showed that the problem is related to the caching mechanism of Microsoft’s Bing search engine. Lasso analyzed a list of repositories that were public at some point in 2024 and were then deleted or switched to private mode. It turned out that data from these repositories is still accessible through Copilot.

This discovery raises serious questions about data security in the era of generative AI. Even a brief disclosure of confidential information can lead to long-term consequences, as AI systems index and store this data, making it potentially accessible to any user who knows the right questions.

The situation is particularly notable because it affects the world’s largest technology companies, including the developer of the tool itself – Microsoft. This demonstrates that even organizations with the highest level of technical expertise can face new security challenges created by artificial intelligence systems.

Autor: AIvengo
For 5 years I have been working with machine learning and artificial intelligence. And this field never ceases to amaze, inspire and interest me.

Latest News

AI in forensics: crime predictions, patrol robots

According to the International Association of Forensic Scientists, the implementation of artificial intelligence technologies increases the effectiveness of solving complex crimes by thirty to forty percent. Let's explore how this happens.

AI in medicine: Breakthroughs doctors don't talk about

The transformation of medicine through artificial intelligence isn't just a technological leap. It's a fundamental change in the approach to treatment and diagnosis of diseases. Research shows that the global artificial intelligence market in healthcare will grow to one hundred and forty-five billion dollars by the thirtieth year. To understand this growth - in twenty-four, this market was thirty billion dollars. That's almost a fivefold increase in six years! Let's figure out what's behind these numbers.

YouTube offers free AI-generated music

YouTube is launching a revolutionary feature that allows creators to create unique instrumental music using artificial intelligence for their videos. The company announced this in an update on its Creator Insider channel.

US ready to fine TSMC $1 billion for cooperation with Huawei

I'll translate this text into English, French, and German while maintaining its original structure, punctuation, and style.

Google launches Gemini for enterprise developers

Google has announced the launch of Gemini in Android Studio for Business - a new subscription service designed to simplify enterprise application development. The announcement was made at the Google Cloud Next 2025 conference in Las Vegas and aims to strengthen the company's position in the corporate sector.