🔐 Early Bird Tickets Live • Training 24-26 Oct 2026 • Conference 27 Oct 2026
Workshop
Automated AI Red Teaming : Elevating Copilot Prompt Injection to Azure Cloud Takeover
A Hands-On workshop on Automated AI Red Teaming inside the Microsoft Ecosystem.
DATE
27 October 2026
LOCATION
Hilton EGL, Bangalore
TIME
14:30 – 17:30 (w/Break)
Abstract
Organizations are heavily adopting Microsoft Copilot Studio and Microsoft Foundry to build custom autonomous agents that do far more than just answer questions, they take actions like automating routine processes and enhancing productivity.
By leveraging Retrieval Augmented Generation (RAG), these assistants can quickly pull highly sensitive corporate data directly from the Microsoft 365 ecosystem including SharePoint, Word and Excel. To achieve true autonomous capability, these agents are given access to advanced tools, such as linking with Power Automate to run workflows.
However, connecting AI agents to sensitive corporate data and powerful execution tools introduces new security risks. When agents can read internal documents, they become prime targets for prompt injection attacks that expose confidential data.
The risk increases significantly when these agents possess "excessive agency" to execute tasks without human approval. If an attacker manipulates the chat interface, they can force the AI to abuse its connected tools, triggering unauthorized workflows against the organization’s cloud infrastructure.
To find and fix these blind spots, security teams must use Automated AI Red Teaming. In this workshop, you will use the Microsoft’s PyRIT framework to test and compromise a Copilot agent. You’ll learn to design automated single-turn and multi-turn attacks that push the AI beyond its safety guardrails.
The session ends with practical steps to enforce strict tool boundaries and secure your enterprise AI ecosystem.

Prerequisites for the webinar
Basic python and cloud computing knowledge recommended but not mandatory.
Bring a Laptop.
MEET THE INSTRUCTOR
Vishal Raj

Azure Security Researcher Altered Security
Vishal Raj is a Security Researcher at Altered Security specializing in Cloud Security, Red Teaming, and Network Security. With a strong focus on identifying and exploiting misconfiguration in modern cloud environments, Vishal is passionate about enhancing enterprise security by simulating real-world attack scenarios and providing actionable defense strategies. Vishal extensively conducts research on Microsoft Entra ID, contributing to the understanding of identity and access management vulnerabilities in cloud environments. In addition to his technical expertise, Vishal actively contributes to the cybersecurity community by writing insightful blogs on a variety of security topics. His writings aim to bridge the gap between theoretical concepts and practical application, empowering others in the field.
About AltSecCON
AltSecCON is an in-person Red Team training initiative focused on instructor-led delivery, enterprise-aligned labs, and practical offensive security execution.
© AltSecCON. An Altered Security initiative.
contact@alteredsecurity.com
Information
Training Programs
Follow Us
Conference
Event
© 2026 AltSecCON. All rights reserved.

