LoginBook Demo

OWASP 2024 Global AppSec

blog post
  • September 23-27th

OWASP 2024 Global AppSec | Booth SU14 | San Francisco, CA

Request a meeting with us at the OWASP Global AppSec through the form on the right, and come visit us at our booth #SU14! Don’t forget to mark your calendar for Zenity co-founder and CTO Michael Bargury’s talk where he outlines the risks of remote copilot execution (RCE) attacks that any organization utilizing Microsoft Copilot is facing when unleashing this powerful technology without even requiring a compromised account.

Happy Hour

Thursday, September 26 | 5:30pm | Coqueta, Pier 5 The Embarcadero | Event Details

We’re excited to be co-sponsoring a Happy Hour with our friends from Phoenix Security, Myrror, and Armo. Come join us for an evening of networking, food and fun where we’ll talk about the future of AppSec and learn from one another.

Breakout Track: Living off Microsoft Copilot

Thursday, September 26 | 10:30am | Grand Ballroom | Session Details

Discover how Microsoft Copilot can be exploited post-compromise by hackers to search for, parse, and exfiltrate sensitive data without generating logs; all with simple emails, Teams messages, or calendar invites; no account compromise necessary.

This comprehensive talk delves into the red-team-level practicality of total copilot takeover, enabling data theft and AI-based social engineering. Learn how hackers circumvent built-in security controls and use AI against them to control Copilot and all its underlying data.

We’ll introduce LOLCopilot, a new red-teaming tool designed for ethical hackers to exploit Copilot within any M365 copilot-enabled tenant. Finally, gain valuable insights into detection and hardening techniques to protect against malicious insiders and threat actors with Copilot access.

Why Join:

If you’re an AI or Security stakeholder, you won’t want to miss this talk to understand the underlying risks and shared responsibility model of Microsoft Copilot. While the technology offers massive upside and productivity gains, you also own the risks associated with it. Be prepared!

Presenters

Michael Bargury

Michael Bargury

CTO & Co-Founder

Meet us at OWASP

Secure Your Agents

We’d love to chat with you about how your team can secure
and govern AI Agents everywhere.

Book Demo