Microsoft restricts Internet Explorer mode in Edge after exploitation

First reported

13.10.2025 12:54

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

Microsoft has restricted the use of Internet Explorer (IE) mode in its Edge browser after threat actors exploited it to gain unauthorized access to users' devices. The attackers used social engineering and unpatched exploits in IE's JavaScript engine (Chakra) to achieve remote code execution and privilege escalation. The attack involved tricking users into reloading a page in IE mode, allowing the attackers to bypass modern browser defenses and perform various post-exploitation activities. Microsoft has removed the dedicated toolbar button, context menu, and hamburger menu items for IE mode, requiring users to enable it explicitly for specific sites.

Timeline

13.10.2025 12:54 1 articles · 4h ago

Microsoft restricts Internet Explorer mode in Edge after exploitation
Microsoft has restricted the use of Internet Explorer (IE) mode in its Edge browser after threat actors exploited it to gain unauthorized access to users' devices. The attacks involved social engineering and unpatched exploits in IE's JavaScript engine (Chakra) to achieve remote code execution and privilege escalation. Microsoft has removed the dedicated toolbar button, context menu, and hamburger menu items for IE mode, requiring users to enable it explicitly for specific sites.
Show sources

Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54
Open in new tab

Information Snippets

Threat actors exploited IE mode in Microsoft Edge to gain unauthorized access to users' devices.
First reported: 13.10.2025 12:54

1 source, 1 article
Show sources
- Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54
The attacks involved social engineering and unpatched exploits in IE's JavaScript engine (Chakra).
First reported: 13.10.2025 12:54

1 source, 1 article
Show sources
- Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54
Attackers used a flyout on a seemingly legitimate website to instruct users to reload the page in IE mode.
First reported: 13.10.2025 12:54

1 source, 1 article
Show sources
- Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54
The exploitation allowed for remote code execution and privilege escalation, leading to complete control of the victim's device.
First reported: 13.10.2025 12:54

1 source, 1 article
Show sources
- Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54
Microsoft has removed the dedicated toolbar button, context menu, and hamburger menu items for IE mode.
First reported: 13.10.2025 12:54

1 source, 1 article
Show sources
- Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54
Users must now explicitly enable IE mode on a case-by-case basis via Edge browser settings.
First reported: 13.10.2025 12:54

1 source, 1 article
Show sources
- Microsoft Locks Down IE Mode After Hackers Turned Legacy Feature Into Backdoor — thehackernews.com — 13.10.2025 12:54