Posts in Security

April 12, 2017 PC

Disabling VBScript execution in Internet Explorer 11

By Microsoft Edge Team

VBScript is deprecated in Internet Explorer 11, and is not executed for webpages displayed in IE11 However, for backwards compatibility, VBScript execution is currently still permitted for websites rendered in legacy document This was introduced as a temporary Document modes… Read more

March 23, 2017 Mobile, PC, Tablet

Strengthening the Microsoft Edge Sandbox

By Crispin Cowan

In a recent post, we outlined the layered strategy that the Microsoft Edge security team employs to protect you from vulnerabilities that could be used to compromise your device or personal In particular, we showed how Microsoft Edge is leveraging… Read more

Screen capture showing an Edge browser window with a dialog from the address bar which reads "Adobe Flash content was blocked. Do you want to allow Adobe Flash to run on this site?" The options are Close, Allow Once, and Allow Always.
December 14, 2016 PC, Tablet

Extending User Control of Flash with Click-to-Run

By Crispin Cowan and Microsoft Edge Team

Adobe Flash has been an integral part of the web for decades, enabling rich content and animations in browsers since before HTML5 was In modern browsers, web standards pioneered by Microsoft, Adobe, Google, Apple, Mozilla, and many others are now… Read more

Screen capture showing Microsoft Edge when browsing to a site protected with a SHA-1 certificate
November 18, 2016 Mobile, PC, Tablet

SHA-1 deprecation countdown

By Microsoft Edge Team

The SHA-1 hash algorithm is no longer Weaknesses in SHA-1 could allow an attacker to spoof content, execute phishing attacks, or perform man-in-the-middle attacks when browsing the Microsoft, in collaboration with other members of the industry, is working to phase… Read more