Microsoft backpedals: Edge to stop loading passwords into memory
Summary
Microsoft is reversing its stance and will update the Edge browser to prevent saved passwords from being loaded into process memory in clear text at startup. This change comes after initial statements indicated the behavior was intentional.
IFF Assessment
FRIEND
This is good news for defenders as it addresses a potential security vulnerability that could expose user credentials.
Defender Context
This development highlights the ongoing importance of securing sensitive data like passwords, even within mainstream applications. Defenders should be aware of how browsers handle credential storage and encourage users to utilize built-in security features and password managers.