Microsoft’s upcoming “Copilot Actions” feature on Windows 11 is drawing attention for reasons the company probably didn’t expect. The tool is currently available only in Insider builds as part of Copilot Labs, and it is switched off by default. Users also need admin access to turn it on. That alone hints that this isn’t a casual feature meant for everyone just yet.
But the bigger concern is what Microsoft itself admits. In a newly updated support document, the company warns that features like Copilot Actions come with what it calls “novel security risks.” One of the main threats highlighted is cross-prompt injection, where malicious content hidden in documents, websites or even UI elements can trick the AI into ignoring its original instructions. According to Microsoft, this could lead to unexpected and serious consequences, including data theft or even the installation of malware on your system.
In other words, a Windows feature meant to assist you could potentially be manipulated to harm your device. Microsoft is blunt enough to say, “We recommend that you only enable this feature if you understand the security implications.” And when you try to turn it on, Windows shows you a warning pop-up explaining that the feature is experimental and may affect your PC’s performance or security.
What makes people uneasy is the level of access Copilot Actions receives once enabled. It gets read and write access to your Desktop, Documents, Downloads, Pictures, Videos and Music folders. That is essentially your entire personal digital life. While Microsoft says it has safeguards in place, such as requiring user approval for actions, running tasks in isolated workspaces and logging every activity, many feel it still gives an unpredictable AI far too much freedom.
Microsoft even includes a reminder that these AI models can “hallucinate and produce unexpected outputs.” That’s hardly comforting when the same system can interact with your apps and personal files.
Ars Technica reached out to Microsoft for more clarity on how users can protect themselves if they decide to enable Copilot Actions. But according to their report, Microsoft declined to give specific advice. For now, the safest takeaway seems simple: Copilot Actions is powerful, fascinating and definitely not ready for everyone. If you are even slightly unsure about its risks, it’s probably best to leave it off.
Discover the latest Business News, Sensex, and Nifty updates. Obtain Personal Finance insights, tax queries, and expert opinions on Moneycontrol or download the Moneycontrol App to stay updated!
