Episode 07 | Hidden Prompts, Trusted Output: Inside Copilot Summary Abuse

In this episode, Ian Ahl (Permiso CTO) and Andi Ahmeti (Permiso Threat Researcher) walk through new research on how Microsoft Copilot email summaries can be manipulated by attacker-controlled content inside a message. They show how hidden instructions can influence summary output, inject fake security warnings, and make AI-generated summaries feel more trustworthy than the original email. It’s a sharp look at how productivity features can become attack surfaces, and what defenders should be watching next.