> TritonInfoSec News
Home / May 17, 2026 / Story
0
#10 BleepingComputer general May 15, 2026 at 14:49 UTC

Microsoft backpedals: Edge to stop loading passwords into memory

By Sergiu Gatlan

AI Summary

Microsoft reversed course on a security issue in the Edge browser, committing to stop loading saved passwords into process memory in cleartext at startup — behavior the company had previously defended as 'by design.' The change comes after security researchers flagged that cleartext credentials in process memory are trivially accessible to any process with sufficient privileges or via memory dump attacks. This represents a meaningful hardening improvement for the estimated hundreds of millions of Edge users who store passwords in the browser.

Read full article → https://www.bleepingcomputer.com/news/microsoft/mi…

Relevance score: 70.0/100

# More from May 17

  1. 1
    Microsoft warns of Exchange zero-day flaw exploited in attacks BleepingComputer
  2. 2
    Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 SecurityWeek
  3. 3
    Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access The Hacker News
  4. 4
    Popular node-ipc npm package compromised to steal credentials BleepingComputer
  5. 5
    OpenAI Hit by TanStack Supply Chain Attack SecurityWeek
  6. 6
    Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own BleepingComputer
  7. 7
    Funnel Builder WordPress plugin bug exploited to steal credit cards BleepingComputer
  8. 8
    Avada Builder WordPress plugin flaws allow site credential theft BleepingComputer
  9. 9
    PoC Code Published for Critical NGINX Vulnerability SecurityWeek