Microsoft Copilot had access to organizations’ confidential emails – without permission.
Microsoft has acknowledged that a bug in Microsoft 365 Copilot has inadvertently granted the AI assistant access to confidential emails.
According to Bleeping Computer, a service report about the bug (tracked as CW1226324) that was initially detected on January 21 affects the Copilot “work tab” chat feature. This allows it to read and summarize emails in the users’ sent and draft folders. What is concerning is that the AI had access to read and summarize emails marked with confidentiality labels, which are explicitly designed to ensure automated tools to not have access.
Microsoft said when it confirmed the issue to Bleeping Computer:
The Microsoft 365 Copilot ‘work tab’ Chat is summarizing email messages even though these email messages have a sensitivity label applied and a DLP policy is configured.”
The Silicon Valley tech giant also said that a “A code issue is allowing items in the sent items and draft folders to be picked up by Copilot even though confidential labels are set in place.” Microsoft has now confirmed it has started rolling out a fix for the bug in early February. On Wednesday, Microsoft stated that it was monitoring the deployment and is reaching out to some users to confirm the fix is working.
Using Copilot to boost productivity is not worth the risk
Microsoft has been pushing the rollout of its AI, Copilot, into all Microsoft 365 apps – not only for personal use, but also for businesses to integrate into the workforce. In September 2025, Copilot Chat, Microsoft’s AI-powered chat which allows users to interact with AI agents was rolled out into Excel, Word, Outlook, PowerPoint, and OneNote for Microsoft 365 business customers. Now, just four months later, a bug has compromised the sensitive data of Microsoft 365 users.
While the use of AI assistants, like Copilot Chat, is globally being pitched by tech giants to boost productivity and speedup workflows, what is clear is that new and developing AI technologies can become extreme security and privacy risk – especially for organizations that need to protect sensitive information.
Price hikes, AI, & one bad bug: Goodbye email confidentiality!
Many businesses today use Microsoft Outlook – mostly because it’s bundled with Microsoft’s Office tools like Word and Excel, but recent developments show that switching to alternatives, particularly for email, becomes more and more attractive.
-
In January 2026, a bug enabled Copilot Chat to summarize emails despite having sensitivity labels and DLP policies configured.
-
In 2025, Microsoft announced huge Microsoft 365 price hikes set to begin July 2026.
-
In September 2025, Microsoft rolled out its Copilot Chat into Excel, Word, Outlook, PowerPoint, and OneNote for paying Microsoft 365 business customers.
One thing that becomes clear from all of this: If your business uses Microsoft 365, it is time to quit the vendor lock-in and protect your confidential information. Luckily there are excellent alternatives to Microsoft products available.
It’s time to quit the vendor lock-in
This is not the first or the last security issue Microsoft has encountered.
-
In 2024, the U.S. government asked Microsoft to patch its security, before adding new features after China hacked Microsoft email servers.
-
In 2025, companies were warned not to switch the to the “New Outlook” due to it not respecting data protection laws that businesses need to comply with.
-
In 2025, Microsoft sparked the trend of European digital sovereignty, after Microsoft’s lawyer in France confirmed that all data hosted at Microsoft, even if stored in European data centers, can be accessed by the U.S. government - without warning.
With the integration and rapid development of Copilot in Microsoft 365, individuals’ and organizations’ data will remain at risk.
The announcement of this bug, just months after rollout of Copilot in Microsoft 365 business plans, highlights why AI assistants do not belong in email and the importance of using end-to-end encrypted email, like Tuta Mail.
