By ynet Global
Publication Date: 2025-12-15 07:39:00
Israeli researchers have revealed a critical vulnerability in Microsoft’s Copilot Studio platform, demonstrating how AI agents built using “no-code” tools can be hijacked to commit fraud and leak sensitive data — all without human oversight.
In newly released research, cybersecurity firm Tenable detailed how it was able to successfully perform a jailbreak on an AI travel agent created within Copilot Studio. The agent, designed to autonomously manage travel bookings and handle sensitive customer information such as contact details and credit card numbers, was manipulated through a technique known as prompt injection.
Despite being programmed with strict rules to verify customer identities before making changes or disclosing information, the AI agent was coerced into bypassing those controls. Tenable researchers tricked it into leaking full payment card information and altering a booking to charge €0, effectively granting free travel services without authorization.
“AI agent…
