Cavelo launches Microsoft Copilot Readiness Report capability

Attack surface management technology provider Cavelo Inc. has outlined its Microsoft Copilot Readiness Report capability to mitigate cybersecurity and data privacy risks associated with Microsoft Copilot integration.

  • Wednesday, 16th October 2024 Posted 1 month ago in by Phil Alsop

Companies are steadily adopting AI-assisted technology like Microsoft Copilot to support productivity objectives. Yet default data access permissions and system connectivity inadvertently put organizations at risk of data leaks, data privacy violations and prompt injection attacks.

“Many businesses are rushing to adopt generative AI tools like Microsoft Copilot for cost savings, but in their drive for efficiency, they’re overlooking the hidden price—cybersecurity risks that can expose sensitive data and amplify attack surfaces,” said James Mignacca, CEO at Cavelo. “For MSSPs, accounting for these risks on their customers’ behalf is complex. Cavelo’s Microsoft Copilot Readiness Report offers MSSP teams analytics that streamline risk remediation efforts while demonstrating value to their customers.”

The Cavelo Microsoft Copilot Readiness Report brings together multiple scan modules to provide an audit of Microsoft Copilot interactions and identify files with anonymous or organization-wide share links that put personally identifiable information (PII) at risk of unintended access.

Key capabilities include:

Auditing — Monitor files used by Microsoft Copilot, and PII data associated with those files.

Discovery — Audit Microsoft Copilot interactions, discover anonymous share links affecting PII, and harden Microsoft O365 configuration for Microsoft Copilot use.

Visibility — Access a permission summary and search to identify files with PII and/or Microsoft sensitivity labels that can be accessed by users with Microsoft Copilot.

Risk clarity — Chart and compile scan results to understand where Microsoft Copilot can read clients’ sensitive data — for example, understanding which files containing PII have anonymous share links.

System and file interaction — See files that Microsoft Copilot has interacted with, as well as the entity associated with that interaction.

Benchmarking — Apply CIS benchmark results to evaluate tenant configuration security with configured Microsoft O365 data and benchmark connectors.

“We’ve been working with Cavelo for more than a year,” said Steven Schoener, Chief Technology Officer at ECI, a Cavelo partner. “When it comes to understanding our customers’ data access, the Microsoft Copilot Readiness Report helps us identify what data is affected by Microsoft Copilot while providing greater understanding of what our customers’ data posture risk looks like.”

Cavelo’s consolidated attack surface management platform helps MSSPs manage and mitigate cyber risk with data discovery, access controls and risk prioritization and remediation. The Cavelo platform counts more than 40,000 agents deployed in organizations across manufacturing, financial, legal and municipal services.

Guardz expands in EMEA

Posted 2 days ago by Phil Alsop
Through a new partnership with Infinigate Cloud, Guardz will help to secure SMBs and support the MSP community across EMEA.
Channel partners can now use customised AI assistants, powered by ArrowSphere AI, to reinvent the way they manage business operations and engage with...
Global system integrator won over by simplicity, security and speed of the Cloudbrink service.
This global service forms part of the recently launched Intelligent Security portfolio and increases Logicalis' proactive threat-hunting capabilities...
Cybersecurity expert recognised for its continued innovation and dedication to application security management with double award win.

Pax8 unveils Pax8 Voyager Alliance

Posted 4 days ago by Phil Alsop
Pax8, the cloud commerce marketplace, has introduced Pax8 Voyager Alliance, its new partner programme that provides global partners with a modern...

Exclusive Networks and Druva partner

Posted 1 week ago by Phil Alsop
Exclusive Networks, the trusted global cybersecurity specialist, has signed an EMEA wide partnership with Druva, a leading provider of data security...
UK Connect will be offering Ericsson Enterprise 5G, including private 5G and enterprise coverage across the UK. As a member of Ericsson’s five-star...