Prompt Injection

You Can't Patch Your Way Out of Copilot Cowork

PromptArmor achieved 5/5 file exfiltration from M365 tenants via Copilot Cowork with no CVE assigned — because the flaw is in the architecture, not the code.