CyberSum logo
Back

Critical GitHub Copilot Chat Flaw Exposed Private Code

Cyber Security News by CyberSum.net
3 sources
A critical vulnerability in GitHub Copilot Chat, rated CVSS 9.6, allowed attackers to exfiltrate private repository data and control Copilot’s responses. The flaw combined a Content Security Policy bypass with remote prompt injection, enabling attackers to embed hidden prompts in pull requests. These prompts, invisible to human readers, influenced Copilot’s context and executed malicious instructions. The attack chain involved injecting prompts that searched for secrets, encoded repository files, and exfiltrated data through image URLs. GitHub’s response included disabling image rendering in Copilot Chat and patching the vulnerability by August 14, 2025. Developers are urged to update their integrations and remain vigilant against emerging attack techniques.

Also Read

Spear-Phishing Campaign Targets Automobile and E-commerce Industries

Researchers at SEQRITE Labs have uncovered a targeted spear-phishing campaign aimed at organizations in the automobile and e-commerce industries. The operation, active since early October 2025, deploys a previously undocumented .NET-based backdoor dubbed CAPI, designed for credential theft, system reconnaissance, and persistent access. The attack chain uses tax-related decoy documents to lure employees and executes the payload through rundll32.exe, a legitimate Windows binary, to evade detection. The infection begins with a malicious ZIP archive named Payroll Recalculation as of October 1, 2025. Inside the ZIP, analysts found both LNK and PDF files, a common spear-phishing tactic to disguise executable payloads as legitimate business documents.

By Cyber Security News by CyberSum.net