Microsoft Edge Stores All Saved Passwords in Cleartext Process Memory at Launch

📅 5 May 2026 at 03:46 UTC📰 Cyber Security NewsView original source ↗

A security researcher has discovered that Microsoft Edge decrypts every stored password into process memory the moment the browser launches and keeps them there as cleartext, regardless of whether the user ever visits those sites. The finding, disclosed on April 29 by PaloAltoNtwks Norway at BigBiteOfTech, was uncovered by researcher @L1v1ng0ffTh3L4N, who systematically tested every […] The post Microsoft Edge Stores All Saved Passwords in Cleartext Process Memory at Launch appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

Microsoft Edge stores all saved passwords in cleartext process memory at launch, allowing attackers to access them without needing user interaction or additional privileges.

⚙️Technical Details

💥Impact Assessment

Severity: High

🛡️Recommended Actions

1Update to the latest version of Microsoft Edge

2Disable password storage in browser settings

3Use a password manager to store and generate passwords

📦Affected Products

Product Name: Microsoft EdgeOperating System:

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News ↗

← Back to feed