Adam Logue, Independent Security Researcher and Synack Red Teamer, discusses his experiences with responsible disclosure and bug bounty programs, and provides a fascinating technical deep dive into a vulnerability he found in Microsoft 365 Copilot during a client-facing engagement.
Adam Logue, Independent Security Researcher and Synack Red Teamer, discusses his experiences with responsible disclosure and bug bounty programs, and provides a fascinating technical deep dive into a vulnerability he found in Microsoft 365 Copilot during a client-facing engagement.
Timestamps:
00:49 - Adam's background with responsible disclosure and bug bounty programs
04:33 - Description of M365 vulnerability
12:34 - Demo of the vulnerability
17:53 - How to pentest AI
20:45 - Getting started in pentesting
23:07 - Benefits of hacking with Synack