Bleeping Computer
6.5 — HIGH
Microsoft backpedals: Edge to stop loading passwords into memory
Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at startup after previously stating it was "by design." [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
Microsoft Edge's previous behavior of loading saved passwords into process memory in clear text at startup has been rectified, but a proof-of-concept tool was released that could potentially be used by attackers with Administrator privileges to dump passwords from other users' Edge processes.
⚙️Technical Details
💥Impact Assessment
Severity: High
🛡️Recommended Actions
1Update to the latest version of Microsoft Edge
2Disable the use of saved passwords for sensitive accounts
3Regularly review and update password managers
📦Affected Products
Product Name: Microsoft EdgeVersion Range: Build 148 and newer
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.