Secret Herbs, Spices and Hacking Copilot Studio

The BlueHat Podcast

Feb 19, 2025•44 min•Season 1Ep. 47

--:--

Listen in podcast apps:

Apple Podcasts

Spotify

Download

Listen to this episode in Metacast mobile app

Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

In this episode of The BlueHat Podcast, host Nic Fillingham is joined by Scott Gorlick, Security Architect for Power Platform at Microsoft. Scott shares his unconventional journey into cybersecurity, from managing a KFC to driving big rigs before landing in tech. He dives into security research in Copilot Studio, discussing how AI models interact with security frameworks and how researchers can approach testing these systems. We also explore his recent training video on YouTube, which provides guidance for security researchers looking to engage with Microsoft’s bug bounty program.

In This Episode You Will Learn:

What Scott does to ensure Power Platform applications remain governable and secure
Why security and software quality go hand in hand in modern development.
How security researchers can explore vulnerabilities in Microsoft's low-code AI development platform

Some Questions We Ask:

What kinds of security issues should researchers focus on in Copilot Studio?
Can Copilot help researchers write better reports, especially in different languages?
How can researchers get access to Copilot Studio? Is there a free version?

Resources:

View Scott Gorlick on LinkedIn

View Wendy Zenone on LinkedIn

View Nic Fillingham on LinkedIn

Security Research in Copilot Studio Overview and Training on YouTube

Related Microsoft Podcasts:

Discover and follow other Microsoft podcasts at microsoft.com/podcasts

For the best experience, listen in Metacast app for iOS or Android