@GossiTheDog And then there is the non-monetary costs. We recently completed our first penetration test against Copilot in my corp and to say we found a lot of secret and confidential stuff out there just for the prompting is an understatement. The company totally believed Microsoft when they said everything would be safe guarded, yet I personally found a document with every marketing service account name and password. Vender contracts, company secrets, legal documents: we found it all. Copilot in a corporate environment is the single largest amplifier of poor IAM configurations. It is the largest insider threat I’ve ever seen.