Edge Buries Saved Passwords in RAM in Plaintext, Study Finds

May 5, 2026 at 10:50 PM

•

1 min read

TL;DR Summary

Security researcher finds that Microsoft Edge loads all saved passwords into memory in cleartext on startup and keeps them in memory for the entire session, making them easier to harvest by memory reading; Microsoft says the behavior is by design, and exploit would require admin access; experts urge against storing passwords in browsers and recommend MFA or passkeys.

Topics:technology #browser-security #cybersecurity #edge #memory #passwords #security

Share this article

Microsoft Edge keeps cleartext passwords in RAM, security researcher warns Cybernews
Microsoft Edge is storing passwords as plain text? Here's what Microsoft says. Mashable
Microsoft Says Edge Password Security Vulnerability Is ‘By Design’—Is It Time To Switch To Chrome? Forbes
Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk Dark Reading
Microsoft Edge: Passwords end up in memory as plaintext heise online

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

92%

719 → 58 words

Want the full story? Read the original article

Read on Cybernews

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights