"Copilot makes over-shared documents more accessible. This is not a net new risk, but a known risk amplified by AI. Xu explained why with the example of a worker who uses Copilot to search for information about organizational changes receiving a response that includes a confidential document about an imminent re-org."
"Xu recommended mitigating Copilot's tendency to produce toxic content by enabling the filters Microsoft supplies, and by training users to always validate the tool's output. The analyst reminded the audience that all Copilot output isn't fit for sharing without review, making validation necessary for all users at all times."
Gartner analyst Dennis Xu identified five key security risks associated with Microsoft 365 Copilot. The primary concern involves Copilot amplifying existing risks by making over-shared documents more accessible through SharePoint searches, potentially exposing confidential information. A secondary risk involves Copilot generating toxic output that, while factually accurate, may be culturally unacceptable in workplace or customer contexts. Xu recommended enabling Microsoft's built-in filters and implementing mandatory user validation of all Copilot output before sharing. He humorously suggested restricting Copilot use on Friday afternoons when workers may skip proper review procedures due to end-of-week fatigue.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]