Other browsers are not affected by this problem. Google Chrome, for example, offers a system called “App Bound Encryption” that encrypts browser data and ensures that it is not stored in plain text in memory. Although this system is not 100% secure, it requires cybercriminal sophistication to overcome it. The plain text passwords in Edge, on the other hand, can be extracted with only moderate knowledge.
If Google can better secure its browser, Shipley said, there’s no reason why Microsoft can’t do the same with Edge: “It’s clearly not a technical hurdle. Rather, it’s a question of motivation. However, that shouldn’t be surprising, after all, Microsoft makes its browser available for free. So why should they bother with securing it beyond the bare minimum?”
Given Microsoft’s stance, businesses (not only) may want to look for a password manager alternative that offers more security. (fm)
This article originally appeared at our sister publication Computerworld.com.
