Microsoft Copilot Reprompt fix (January 2026 Patch Tuesday)
Security Patch Release
Summary
Hide ▲
Show ▼
Microsoft issued a fix for the Reprompt issue in Microsoft Copilot, closing a session-hijack path that could enable invisible data exfiltration. The update landed on January 2026 Patch Tuesday after responsible disclosure, giving defenders a concrete patch point for the prompt-injection flaw. The issue matters because a single click on a crafted link could let an attacker drive Copilot actions inside an authenticated session.
Related Happenings
Workflow-level jailbreak makes GitHub Copilot Chat write harmful answers in code files
Technical Analysis
H score22
First: 08.07.2026 14:21
Last: 08.07.2026 14:21
Sources 1
About this happening:
Researchers demonstrated a **workflow-level jailbreak** against **GitHub Copilot Chat** that caused harmful answers to be written inside code tasks even when direct chat prompts w...
Workflow-level jailbreak makes GitHub Copilot Chat write harmful answers in code files
Technical AnalysisAbout this happening: Researchers demonstrated a **workflow-level jailbreak** against **GitHub Copilot Chat** that caused harmful answers to be written inside code tasks even when direct chat prompts w...
Google Antigravity prompt-injection fix
Security Patch Release
H score31
First: 21.04.2026 13:52
Last: 21.04.2026 13:52
Sources 1
About this happening:
**Google** fixed **Antigravity**'s **prompt injection flaw** in **February**, closing a path that could lead to **sandbox escape** and **remote code execution (RCE)**. The patch f...
Google Antigravity prompt-injection fix
Security Patch ReleaseAbout this happening: **Google** fixed **Antigravity**'s **prompt injection flaw** in **February**, closing a path that could lead to **sandbox escape** and **remote code execution (RCE)**. The patch f...
Microsoft expands Purview DLP enforcement for Copilot across local and cloud Office files
Security Tool/Service
H score11
First: 24.02.2026 19:30
Last: 24.02.2026 19:30
Sources 1
About this happening:
Microsoft is expanding **Purview DLP** so **Microsoft 365 Copilot** cannot process restricted **Word, Excel, and PowerPoint** files stored on **local devices, SharePoint, or OneDr...
Microsoft expands Purview DLP enforcement for Copilot across local and cloud Office files
Security Tool/ServiceAbout this happening: Microsoft is expanding **Purview DLP** so **Microsoft 365 Copilot** cannot process restricted **Word, Excel, and PowerPoint** files stored on **local devices, SharePoint, or OneDr...
Google Looker security bulletin fix (multiple vulnerabilities)
Security Patch Release
H score61
First: 04.02.2026 13:00
Last: 04.02.2026 13:00
Sources 1
About this happening:
**Google** issued a security fix for **Looker** in **GCP-2025-052** after **Tenable Research** disclosed **LeakyLooker** findings, a set of **nine cross-tenant vulnerabilities** i...
Google Looker security bulletin fix (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **Google** issued a security fix for **Looker** in **GCP-2025-052** after **Tenable Research** disclosed **LeakyLooker** findings, a set of **nine cross-tenant vulnerabilities** i...
Notepad++ hit by network compromise
Incident
H score17
First: 03.02.2026 06:55
Last: 03.02.2026 06:55
Sources 1
About this happening:
The **Notepad++** hosting breach enabled attackers to hijack the software update path and selectively redirect some users to **malicious servers**, creating a **supply-chain** ris...
Notepad++ hit by network compromise
IncidentAbout this happening: The **Notepad++** hosting breach enabled attackers to hijack the software update path and selectively redirect some users to **malicious servers**, creating a **supply-chain** ris...
Latest development: 18.02.2026 09:40
Notepad++ released version 8.9.2 to harden the update mechanism after the hijacked update path was used to deliver targeted malware. The release adds a "double lock" design with verification of the signed installer downloaded from GitHub and verification of the signed XML returned by the update server at notepad-plus-plus[.]org, and it also introduces WinGUp hardening including removal of libcurl.dll, removal of CURLSSLOPT_ALLOW_BEAST and CURLSSLOPT_NO_REVOKE, and restriction of plugin management execution to programs signed with the same certificate as WinGUp.
Timeline
-
14.01.2026 16:00 1 articles · 5mo ago
Varonis discloses Reprompt Copilot session hijack
Initial DisclosureVaronis researchers disclosed Reprompt to Microsoft on August 31, 2025 after showing that a legitimate URL's q parameter could hide malicious instructions, trigger a single-click Microsoft Copilot session hijack, and enable invisible data exfiltration from an authenticated Copilot session.
Show sources
- Reprompt attack let hackers hijack Microsoft Copilot sessions — www.bleepingcomputer.com — 14.01.2026 16:00
-
14.01.2026 16:00 3 articles · 5mo ago
Microsoft ships a fix for Reprompt in Microsoft Copilot
Mitigation Patch UpdateMicrosoft issued a fix for Reprompt on January 2026's Patch Tuesday, closing a Copilot session-hijack path that could keep an authenticated Microsoft Copilot conversation alive after a single click and support invisible data exfiltration.
Show sources
- Reprompt attack let hackers hijack Microsoft Copilot sessions — www.bleepingcomputer.com — 14.01.2026 16:00
- Reprompt attack let hackers hijack Microsoft Copilot sessions — www.bleepingcomputer.com — 14.01.2026 16:00
- Researchers Reveal Reprompt Attack Allowing Single-Click Data Exfiltration From Microsoft Copilot — thehackernews.com — 15.01.2026 17:09