A security researcher has discovered that Microsoft Edge will load all your stored passwords into memory in plaintext at startup, making it easy for malware to scrape those passwords.
I extracted IE6 passwords from hundreds of people when I was 13, for fun. If passwords are now being stored plaintext again, they are going to leak. Some of the people who steal those passwords won’t be doing it just for fun.
to be honest passwords on their own are on their way out as a form of security entirely for this reason - they’re inherently weak no matter how they’re stored as they’re a single point of failure. we’re even moving on from 2 factor to passkeys.
I extracted IE6 passwords from hundreds of people when I was 13, for fun. If passwords are now being stored plaintext again, they are going to leak. Some of the people who steal those passwords won’t be doing it just for fun.
to be honest passwords on their own are on their way out as a form of security entirely for this reason - they’re inherently weak no matter how they’re stored as they’re a single point of failure. we’re even moving on from 2 factor to passkeys.