Microsoft Warns Windows 11 AI Could Put Malware on Your PC

Summary

Microsoft announced new agentic AI features for Windows 11 Insider builds that can automate tasks such as email drafting and file sorting, but these capabilities are disabled by default and require user opt‑in. In a security advisory, the company warned that the AI could be vulnerable to cross‑prompt injection attacks, potentially allowing malicious content to trigger unintended actions like data exfiltration or malware installation. To mitigate the risk, Microsoft is introducing an experimental "agent workspace" that restricts the AI’s access to only publicly available files, keeping user‑profile‑protected data off‑limits. The warning underscores the nascent security challenges of embedding autonomous AI into operating systems.