Jump to content

Search the Community

Showing results for tags 'edge'.

More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Site Related
    • News & Updates
    • Site / Forum Feedback
    • Member Introduction
  • News
    • General News
    • FileSharing News
    • Mobile News
    • Software News
    • Security & Privacy News
    • Technology News
  • Downloads
    • nsane.down
  • General Discussions & Support
    • Filesharing Chat
    • Security & Privacy Center
    • Software Chat
    • Mobile Mania
    • Technology Talk
    • Entertainment Exchange
    • Guides & Tutorials
  • Off-Topic Chat
    • The Chat Bar
    • Jokes & Funny Stuff
    • Polling Station

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...

Found 51 results

  1. One of the main advantages of the upcoming Microsoft Edge web browser that is based on Chromium is that it supports multiple extension stores. Microsoft Edge users may install extensions from Microsoft's own extensions store for Edge, or enable an option in the web browser to unlock extension installations from the Chrome Web Store as well. But how different are the extensions designed specifically for Microsoft Edge, and the extensions offered by Google on the Chrome Web Store? Are there any extensions available exclusively that Chrome users cannot install? I decided to compare the available extensions for the Chromium-based Microsoft Edge browser that are offered on Microsoft's Edge extensions store with what is being offered on the Chrome Web Store. Microsoft's Edge extensions store list 117 extensions. The number of extensions on the Chrome Web Store is unknown as Google does not reveal it. The following extensions are unique to Microsoft Edge. Note that alternatives may be available on the Chrome Web Store for some of them. ClassLink OneClick -- offers access to web apps and files. Download music from VK -- VK music downloader. Easy Video and Audio Downloader -- media downloader (does not work on YouTube). Ebates Rakuten: Get Cash Back For Shopping -- shopping extension. Eno from Capital One -- shopping assistant. FlipGive Max -- shopping extension. Marker: Screen capture tool for professionals -- screenshot extension. Microsoft Personal Shopping Assistant -- shopping extension. MyPoints Score -- shopping extension. Rutoken Plugin for Edge -- digital signature, encryption, and 2FA extension. TrueKey (McAfee) -- password manager. Video Downloader Professional for Edge -- media downloader. Vonage Integration Suite -- communication extension. Wikibuy -- shopping extension. A total of 14 extensions are exclusive and may be installed in the Chromium-based Microsoft Edge browser. That leaves 103 extensions that are not unique and also available on the Chrome Web Store. Some users may wonder why Microsoft bothers with its own extensions store if most extensions are available on the Chrome Web Store as well. We need to look at the extensions that are unique in more detail to answer that question. The three main categories are shopping, media downloads, and Enterprise functionality. Shopping may come as a surprise to many, media downloading not so much. One of the limitations of Chrome extensions is imposed by Google policies. Extensions may not offer functionality to download media from select Google properties such as YouTube. Microsoft does not impose the same limitations on extension developers (Mozilla, Opera, and other browser makers don't either). Closing Words Maintaining an extension store for the Chromium-based Edge browser offers several advantages. It gives Microsoft full control over extensions including its own vetting and verification process. One of the main advantages is that extensions may offer features and options that Chrome extensions don't support in that form. Source: These Extensions are exclusive to the Chromium-based Microsoft Edge (gHacks - Martin Brinkmann)
  2. The company is being refashioned in ways its former CEOs could never have imagined. Thinkstock Microsoft stunned most tech watchers several months ago when it announced it was abandoning 25 years of its go-it-alone browser strategy and would replace Edge’s web rendering engine with one developed by the Chromium open-source project. The shock wasn’t just that Microsoft was turning to open source for its browser. It was that Chromium also powers Edge’s main rival, Google’s Chrome browser — and that the Chromium project was originally created by Google, although Google is not in charge of it now. The move was born of desperation. As Computerworld’s Gregg Keizer points out, Edge had only a 12% adoption rate in February, while Chrome had an insurmountable 67% market share. There’s been no evidence that Edge will ever catch up. There are plenty of reasons for Edge’s failure. But a significant one is the lack of add-ons for the browser — a paltry 118 at last count, even though Microsoft has been courting developers to write add-ons for Edge ever since the browser was introduced four years ago. That’s compared to many thousands for Chrome. When Edge adopts Chromium, Chrome extensions will almost certainly be able to run on it. By adopting Chromium, Microsoft can also free up Edge engineers to work on other company projects. And Edge will get more frequent updates than it does now, because Chromium generally gets updated eight times a year, Keizer reports. So there’s a great deal of logic to the move. It’s only surprising because of how much it goes against the company’s decades of going its own way with browsers. But it’s very much in keeping with CEO Satya Nadella’s cleanup of an old, die-hard Microsoft culture that vowed to dominate every market possible using the blunt force of Windows’ dominance. There’s poetic justice in Nadella accepting open-source standards for Edge and abandoning its go-it-alone ways. The move is a direct repudiation of the hard-charging, legally questionable tactics Bill Gates used to build Microsoft into what by the 1980s and 1990s had become the world’s most powerful tech company. Because of that dominance, in 1998 the U.S. Department of Justice and 20 state attorneys general sued Microsoft for illegally using its Windows monopoly to thwart competition. Internet Explorer was at the core of the case. Microsoft, at the time, required that computer makers include Internet Explorer in every Windows installation. The company also made it difficult, if not impossible, for consumers to install and use non-Microsoft browsers. Microsoft contended that Internet Explorer was so integral to Windows that removing it would slow down the operating system. The company also claimed it was easy for people to install alternate browsers. The trial uncovered the dirty underbelly of Microsoft’s strong-arm tactics. In perhaps the lowest point in the company’s public history, the company presented as evidence videotapes that purported to show that removing Internet Explorer would slow down Windows, and that it was quite simple to install a different browser on the operating system. It turned out, though, that Microsoft had doctored both tapes. Eventually Microsoft settled the suit. Microsoft’s abandoning of a proprietary browser in favor of open standards finally closes that chapter of the company’s past. As I’ve written previously, Nadella has revived Microsoft by, among other things, increasingly having the company accept and work with open-source software. The company’s SQL Server database now runs on Linux, for example. John “JG” Chirapurath, a general manager with Microsoft, puts the new Microsoft outlook this way: ““To keep flexibility and choice is absolutely critical. We can’t walk into a customer today and offer them a data platform that exclusively works with Windows or, say, C#. We’ve got to go in there and say, ‘Can we meet you on your terms, and what does that look like?’” Microsoft Vice President for Windows Joe Belfiore, in his announcement about Microsoft’s plan to move Edge to Chromium, seconded that by saying, “We intend to become a significant contributor to the Chromium project, in a way that can make not just Microsoft Edge — but other browsers as well — better on both PCs and other devices.” If true, that means Microsoft will be contributing to work that will not just make Edge better, but Chrome as well, because Chrome uses Chromium technology. The move signals a symbolic end to the old Microsoft. Microsoft’s proprietary browsing technology helped the company unfairly extend its monopoly, and that abuse eventually brought the company low. By going open source with the core of Edge, Nadella has finally refashioned Microsoft in a way that Bill Gates and Steve Ballmer could have never imagined. Source: Here’s why Microsoft raised the white flag on Edge (Ars Technica)
  3. Petrovic

    MS Edge

    edge-follow-os-theme Download: https://wbdiagstor.blob.core.chinacloudapi.cn/fileshare/microsoftedgesetup-latest.zip
  4. Google's most secure login system now works on Firefox and Edge, too Better hardware security key support means our post-password future is one step closer to reality. Yubico's hardware security keys let you log on without a password on sites, apps and devices that support the FIDO2 authentication technology. Stephen Shankland/CNET Google has updated its support for hardware security keys so you no longer need to rely on its Chrome browser to log into websites like Gmail, YouTube and G Suite. Hardware security keys, small devices that connect to devices wirelessly or with USB, offer better logon security than passwords alone or passwords combined with short-lived numeric codes sent to your phone. But until now, Google's support was limited to an earlier standard called U2F that came with a lot of confines. But now Google updated its login with the newer, broader standard of FIDO2 and its incarnation for websites, WebAuthn. The change means people using Mozilla's Firefox and Microsoft's Edge will be able to log into Google websites with hardware security keys -- though for now they'll still need Chrome to enroll in the system. And later, embracing FIDO2 opens the door for Google to move beyond passwords entirely, since FIDO2 enables authentication with a combination of security key and biometric data like faces or fingerprints. That would be a victory for those who want to move beyond today's plague of problems with passwords. U2F, short for Universal Second Factor, is limited to uses that combine the hardware key with a password. Browsers like Firefox, Edge and Apple Safari don't support it. FIDO2, which like U2F was developed by a consortium called the Fast Identity Online Alliance, encompasses U2F and other options, including just the hardware security key alone. Christiaan Brand, product manager for identity and security, announced Google's move to WebAuthn in a tweet Thursday. On Friday, Mark Risher, director of identity platform and account security, added: "FIDO2 rolling now!" Google didn't immediately comment on when people would be able to use other browsers to enable hardware security key login or whether Google plans to move to passwordless authentication. Google in February embraced FIDO2 for its Androidsoftware, a move that lets people use fingerprints to log into apps. Microsoft has embraced passwordless logon with Windows and online services like Outlook, Skype and Xbox Live. Source
  5. Mozilla Firefox and Microsoft Edge Hacked at Pwn2Own Mozilla Firefox and Microsoft Edge were both hacked in the second day of the Pwn2Own hacking contest, and in the case of the Windows 10 browser, researchers came up with a super-complex and clever approach to escape a virtual machine and get inside the host. Amat Cama and Richard Zhu of Fluoroacetate were the first to attempt to break into Mozilla Firefoxusing a JIT Bug and an out-of-bounds write in the Windows kernel. This technique allowed to run code at system level, technically taking over the machine completely after pointing Firefox to a crafted website. The two were received a price of $50,000. Mozilla’s browser was also hacked by Niklas Baumstark, who escaped the sandbox with a mix of a JIT bug and a logic bug. The researcher eventually obtained the same rights as the logged-in user, which could obviously provide full control of the host in the case of an administrator account. Baumstark received $40,000 for his exploit.Microsoft Edge exploitsFluoroacetate also hacked Microsoft Edge with a more complex attack that earned them $130,000. “Starting from within a VMWareWorkstation client, they opened Microsoft Edge and browsed to their specially crafted web page,” Zero Day Initiative explains. “That’s all it took to go from a browser in a virtual machine client to executing code on the underlying hypervisor. They started with a type confusion bug in the Microsoft Edge browser, then used a race condition in the Windows kernel followed by an out-of-bounds write in VMware workstation.” Arthur Gerkis of Exodus Intelligence also managed to exploit Microsoft Edge with a double free bug in the renderer mixed with a logic bug to escape the sandbox. His successful attack against the Windows 10 browser brought him $50,000. The vulnerabilities that the researchers used to break into the two browsers have been reported to Mozilla and Microsoft and they should be patched in the coming updates. Source
  6. Responding to complaints, Microsoft acknowledges that all of this month’s Win10 Patch Tuesday cumulative updates make it impossible to access certain local pages from Edge. Getty Images If you can’t get to your router’s admin page using the Edge browser, there’s a reason why. Microsoft broke it with this month’s cumulative updates. Yesterday, Microsoft appended this warning to all of its Windows 10 January cumulative update pages for version 1703 onward: After installing [this month’s cumulative update], some users report that they cannot load a webpage in Microsoft Edge using a local IP address. Browsing fails or the webpage may become unresponsive. There’s a manual workaround that involves adding the malfunctioning page’s IP address to your Trusted Sites list. That’s going to put a lot of creases on the already-overworked brows of security mavens, but so be it. The announcement concludes: Microsoft is working on a resolution and will provide an update in an upcoming release. Of course, the obvious solution is to use a different browser – even Internet Explorer seems to work – but whatever. Looking into the problem, I was surprised to see that it’s been well documented for more than a week. Poster Bree on Tenforums said: None of my physical machines can open my router page in Edge after the Dec. 8 update - that's Edge in the latest build of 1809, 1803, x86 or x64. It appears that only certain routers are affected. So far we have reports for Edge being unable to use web admin on Verizon FIOS-G1100, Netgear, WDC N750 and my BT HomeHub4. In general, if you’re using Edge to access a local page with an address like 192.168.x.x or myrouteradminpage.com and you can’t get to it, blame the latest cumulative update -- and switch browsers. Are you an AskWoody Plus member? Donate on the AskWoody Lounge. Source: There’s a newly acknowledged Edge local IP networking bug in Win10 (Computerworld - Woody Leonhard)
  7. After a few days of rumors, Microsoft announced today that it's going to be using Chromium in its browser moving forward and that the new Edge will be coming to Windows 7, 8.1, and macOS. Now, Mozilla CEO Chris Beard has posted a response to the news, saying that it's bad for the internet. Mozilla says that Microsoft's decision to use Chromium and the Blink rendering engine basically gives Google a monopoly on what we see on the internet. Remember, Chromium is the open-source browser that Google Chrome is based on, and other third-party browsers use it too, like Opera, Vivaldi, and more. With Microsoft moving away from EdgeHTML, that's one less competitor in the browser space, growing Chromium's market share. Mozilla worries that when Chromium's usage share gets large enough, web developers won't test their apps against anything else, going so far as to compare this to when Microsoft had a monopoly in browsers in the early 2000s. Mozilla also said that this is why it exists. "We compete with Google not because it’s a good business opportunity," Beard said. "We compete with Google because the health of the internet and online life depend on competition and choice." Source: Neowin
  8. A team of Belgian researchers discovered privacy issues in how browsers, ad-blocking, and anti-tracking implementations handle third-party cookie requests. A team of Belgian researchers from KU Leuven analyzed third-party cookie policies of seven major web browsers, 31 ad-blockers and 14 anti-tracking extensions and discovered major and minor issues in all of them. Major issues include Microsoft Edge's unwillingness to honor its own "block only third-party cookies" setting, bypasses for Firefox's Tracking Protection feature, and use of the integrated PDF viewer in Chrome and other Chromium-based browsers for invisible tracking. Cookie requests can be sorted into two main groups: first-party requests that come from the address listed in the address bar of the browser and third-party requests that come from all other sites. Advertisement displayed by websites makes use of cookies usually and some of these cookies are used for tracking purposes. Internet users can configure their browsers to block any third-party cookie requests to limit cookie-based tracking. Some browsers, for instance Opera or Firefox, include ad-blockers or anti-tracking functionality that is used in addition to that. Anti-tracking mechanisms have flaws The research paper, "Who Left Open the Cookie Jar? A Comprehensive Evaluation of Third-Party Cookie Policies", detailed information about each web browser, tests to find out if a browser is vulnerable to exploits, and bug reports are linked on the research project's website. The researchers created a test framework that they used to verify whether "all imposed cookie- and request-policies are correctly applied". They discovered that "most mechanisms could be circumvented"; all ad-blocking and anti-tracking browser extensions had at least one bypass flaw. In this paper, we show that in the current state, built-in anti-tracking protection mechanisms as well as virtually every popular browser extension that relies on blocking third-party requests to either prevent user tracking or disable intrusive advertisements, can be bypassed by at least one technique The researchers evaluated tracking protection functionality and a new cookie feature called same-site cookies that was introduced recently to defend against cross-site attacks. Results for all tested browsers are shown in the table below. The researchers tested the default configuration of Chrome, Opera, Firefox, Safari, Edge, Cliqz, and Tor Browser, and configurations with third-party cookie blocking disabled, and if available, tracking protection functionality enabled. Tor Browser is the only browser on the list that blocks third-party cookies by default. All browsers did not block cookies for certain redirects regardless of whether third-party cookies were blocked or tracking protection was enabled. Chrome, Opera and other Chromium-based browsers that use the built-in PDF viewer have a major issue in regards to cookies. Furthermore, a design flaw in Chromium-based browsers enabled a bypass for both the built-in third party cookie blocking option and tracking protection provided by extensions. Through JavaScript embedded in PDFs, which are rendered by a browser extension, cookie-bearing POST requests can be sent to other domains, regardless of the imposed policies. Browser extensions for ad-blocking or anti-tracking had weaknesses as well according to the researchers. The list of extensions reads like the who is who of the privacy and content blocking world. It includes uMatrix and uBlock Origin, Adblock Plus, Ghostery, Privacy Badger, Disconnect, or AdBlock for Chrome. The researchers discovered ways to circumvent the protections and reported several bugs to the developers. Some, Raymond Hill who is the lead developer of uBlock Origin and uMatrix, fixed the issues quickly. At least one issue reported to browser makers has been fixed already. "Requests to fetch the favicon are not interceptable by Firefox extensions" has been fixed by Mozilla. Other reported issues are still in the process of being fixed, and a third kind won't be fixed at all. You can run individual tests designed for tested web browsers with the exception of Microsoft Edge on the project website to find out if your browser is having the same issues. Closing Words With more and more technologies being added to browsers, it is clear that the complexity has increased significantly. The research should be an eye opener for web browser makers and things will hopefully get better in the near future. One has to ask whether some browser makers test certain features at all; Microsoft Edge not honoring the built-in setting to block third-party cookies is especially embarrassing in this regard. (via Deskmodder) Now You: Do you use extensions or settings to protect your privacy better? Source
  9. When Microsoft released Windows 10 build 17623 to Skip Ahead today, one of the "changes, improvements, and fixes" listed was that the company is going to start testing a feature that will force users of the Windows 10 Mail app to open links in the Edge browser. Dona Sarkar, who wrote the blog post, said that Edge "provides the best, most secure and consistent experience on Windows 10 and across your devices." The only problem is that not everyone feels that way. Many users have Chrome, Firefox, or something else set as their default browser, and Microsoft wants to subvert that in order to get them to use its own in-house solution. Luckily, Windows 10's default Mail app isn't the only email client that you can use. This isn't the first time that Microsoft has done something like this with Windows 10. In April 2016, it announced that Cortana will be locked down so that it will only work with Bing and Edge. Then, last May when the company launched Windows 10 S, it confirmed that users won't even have the option to switch their default browser or search engine on the new SKU of the OS. Luckily, Microsoft is only testing the feature, and it will take feedback from the Windows Insider community. Depending on how that goes, it may decide to push the feature. But make no mistake, despite the fact that this showed up in a Redstone 5 build, it will be made available through a Mail & Calendar app update, meaning that this could be pushed through at any time. If you're in the Skip Ahead subset of the Fast ring and you want to leave feedback on the new feature, you can do so via the Feedback Hub. Source
  10. A preview version of Microsoft's popular browser, Edge, was released for Android back in October. After coming out of beta almost two months later, it soon surpassed one million downloads on the Google Play Store. Last month, the application was updated to include support for adaptive icons, among other changes. Now, a new update has been made available to Edge for Android users, bumping the app to version and bringing a couple of interesting changes. Unsurprisingly, the update brings performance improvements, along with bug fixes; these accompany almost every app update. However, other changes include better support for the newsfeed of the New Tab Page, allowing users to personalize their feed based on the selected region and language. Similarly, improvements to the option that enables users to set Edge as their default browser have been made. The official changelog for the update reads as follows: At the time of writing, the popular browser holds a rating of 4.3 stars out of 5 on the Play Store based on user ratings. This is an improved score in comparison to its rating at the beginning of the year. In any case, if you're interested in these improved features, you can download the latest version of the application here. Source
  11. Welcoming Progressive Web Apps to Microsoft Edge and Windows 10 A little over a year ago, we outlined our vision to bring Progressive Web Apps (PWAs) to the more than half a billion devices running Windows 10. We believe PWAs are key to the web’s future, and couldn’t be more excited about their potential to enable more immersive web app experiences across all device form factors. Today, we’re excited to take a major step from vision to reality, starting with some updates on previewing PWAs in Windows and our roadmap to bring PWAs to the Microsoft Store. Beginning with EdgeHTML 17.17063, we have enabled Service Workers and push notifications by default in preview builds of Microsoft Edge—you can learn more about those features in Ali’s post, “Service Worker: Going beyond the page.” This completes the suite of technologies (including Fetch networking and the Push and Cache APIs) that lays the technical foundation for PWAs on Windows 10. Over the coming weeks, we’re also kicking off some experiments with crawling and indexing quality PWAs from the Web to list them in the Microsoft Store, where users can find them just like any other app on Windows 10. In this post, we’ll give a quick introduction to Progressive Web Apps – what they are, the problems they solve, and how we’ll be enabling them across Windows 10. We’ll explore how our indexing experiments will ramp to an end-to-end PWA discovery experience later this year, and how we’ll empower developers to differentiate their PWAs on Windows – including allowing developers to claim and monetize their PWAs in the Store, interact with customers via reviews and telemetry, and enhance the app with WinRT capabilities. Let’s dive in! (Poster's Note: Lengthy, please use link below for full article) Source: Welcoming Progressive Web Apps to Microsoft Edge and Windows 10 Further reading: Microsoft tees up Windows 10 support of Progressive Web Apps (ZDNet - Mary Jo Foley)
  12. The iOS version of Edge uses the same WebKit engine that powers Apple's Safari, while the Android Edge is based on the Blink engine Google maintains for Chrome. Microsoft Microsoft on Thursday announced that it had created iOS and Android versions of its struggling Edge browser, and would make both available to users for testing. The company cast the Edge variations as critical to flesh out the Windows 10 feature known as "Continue on PC," which will debut with the Fail Creators' Update, aka 1709 upgrade, set to begin shipping Oct. 17. The feature links a specific phone - or tablet - to a Windows 10 personal computer, then automatically hands off certain in-progress tasks, such as a half-finished Office document opened in a browser, from one device to the other. "What makes Microsoft Edge [on iOS or Android] really stand out is the ability to continue on your PC, which enables you to immediately open the page you're looking at right on your PC - or save it to work on later," Joe Belfiore, a Microsoft executive, wrote in a post to a company blog. Continue on PC roughly resembles the "Handoff" feature - and more generally, something called "Continuity" - that Apple introduced in 2014 with OS X Yosemite on Macs and iOS 8 on iPhones and iPads. "Consumers aren't going to care much about this, but [enterprise employees] working on Office 365 that have a meeting, they can grab their phone and fix [a document] in the car or on a plane," said Jack Gold, principal analyst at J.Gold Associates. "That could end up being a big deal." What might be only a minor convenience for a consumer, Gold added, could be a selling point for Windows 10 in the enterprise. And the latter is the customer category that Microsoft cares the most about: The enterprise is where it bags the bulk of its revenue. "Microsoft is all about the enterprise market," Gold continued. Microsoft Microsoft's Edge variations for iOS and Android are designed to work with a Windows 10 feature known as "Continue on PC." Neither of the new Edge browsers was built atop the rendering engine Microsoft uses for Edge on Windows 10 - until now, the only supported OS. Instead, the iOS Edge relies on the same WebKit engine that powers Apple's Safari, while the Android Edge is based on the Blink engine that Google maintains for Chrome. In the case of iOS, using WebKit is a requirement for third-party browsers if they're to be hosted in Apple's App Store, the only sanctioned software mart. In a different company blog, Sean Lyndersay, principal program manager for Edge, failed to mention that limitation, implying that Microsoft had a choice in the matter and picked WebKit on iOS because it was "the core web platform technology" on Apple's operating system. At the same time, Lyndersay felt it necessary to quash any potential talk that these moves presaged Microsoft abandoning its own EdgeHTML engine. "We are proud of the work we've done with EdgeHTML on Windows 10 ... [and] are fully committed to continuing to do so into the future, across the full spectrum of Windows 10 platforms and form factors," Lyndersay said. The iOS versions of Google's Chrome and Mozilla's Firefox were also built atop Safari's edition of WebKit because of Apple's mandate. But Microsoft is not expanding Edge onto iOS and Android from a position of strength on Windows 10. Third-party analytics vendors pegged Edge's share of the Windows 10 base at an all-time low of just 18% last month, meaning 82% of those running Windows 10 turned to another browser in September. Edge's share of Windows 10 has fallen for more than two years; in mid-2015 it started at 36%, but had faded to 24% by the same time in 2016. While Edge could recover, the trend does not hint at a comeback. With Edge so little loved, why did Microsoft go to the work of crafting versions for iOS and Android, even if the job didn't involve porting the browser's native rendering engine? "They had to," was Gold's blunt assessment. "Edge is their web platform of choice, and many of the cloud capabilities, especially for business, rely on the browser. Cortana is key, long term, to them. Some of the analytics capabilities in both consumer and business do, too," said Gold. It makes sense for Microsoft to promote Edge, rather than rely on a rival browser brand, for iOS and Android, even if Edge on those platforms is just a wrapper around others' rendering engines, Gold said. "If enterprises look at Chrome as an option, what's to keep them from looking at Google Docs?" Gold asked, talking about the Google suite of browser-based productivity applications. "Microsoft may not want to be in this space," he added referring to the iOS and Android ecosystems, "but if you're an enterprise support iOS and Android, they'll give you a browser to run." Only Windows Insiders participants were eligible for the iOS Edge preview on iPhones. Support for iPads will be added at a later date, Microsoft said. Meanwhile, the beta of Android Edge for phones will open "soon," with a tablet version due after that. This site includes additional information about the iOS Edge preview. By yesterday, Microsoft had closed the iOS Edge beta, saying it had reached the 10,000-user maximum allowed by Apple. Source: Microsoft takes struggling Edge browser to iOS, Android (Computerworld - Gregg Keizer)
  13. Today, Microsoft announced details of its next major update to Windows 10, which is due to arrive later this year. The somewhat unimaginatively named Fall Creators Update will introduce the company's new Fluent Design System, formerly known as Project NEON, along with a wide range of new cross-platform capabilities; the return of OneDrive placeholders; and a versatile new creative app that will enable users to "transform their photos and videos". However, there was one announcement that we were expecting the company to make today which didn't pop up. A couple of weeks ago, sources at Microsoft told us that it was planning to 'unbundle' its Edge browser from Windows 10. That would have been a significant move, enabling the browser to break free from the operating system's biannual update cadence, and helping Edge to narrow the feature gap with rival browsers. But today, Microsoft told us that Edge unbundling is not part of its current roadmap. Following a session on Edge at the company's Build 2017 developer conference today, a member of the Edge team told us that there are "no plans for [unbundling] right now, but never say never." The news will come as a disappointment to some, who were eagerly anticipating more regular updates to Edge, and more frequent rollouts of new features. But Microsoft made it clear today that it's current plan for Edge is to strengthen the browser by "doubling down on the fundamentals: security, reliability and performance". Source
  14. Argentinean security researcher Manuel Caballero has discovered another vulnerability in Microsoft's Edge browser that can be exploited to bypass a security protection feature and steal data such as passwords from other sites, or cookie files that contain sensitive information. The vulnerability is a bypass of Edge's Same Origin Policy (SOP), a security feature that prevents a website from loading resources and code from other domains except its own. SOP bypass uses server redirects and data URIs To exploit the flaw, Caballero says that an attacker can use server redirect requests combined with data URIs, which would allow him to confuse Edge's SOP filter and load unauthorized resources on sensitive domains. The expert explains the attack step by step on his blog. In the end, the attacker will be able to inject a password form on another domain, which the built-in Edge password manager will automatically fill in with the user's credentials for that domain. Below is a video of the attack. Additionally, an attacker can steal cookies in a similar manner. More demos are available on a page Caballero set up here. Two weeks ago, Caballero found another SOP bypass in Edge, which an attacker could also exploit to steal cookies and passwords. That particular exploit relied on a combination of data URIs, meta refresh tag, and domainless pages, such as about:blank. Compared to the previous SOP bypass, the technique Caballero disclosed yesterday has the advantage that it's faster to execute compared to the first, which required the attacker to log users out of their accounts and re-authenticate them in order to collect their credentials. Edge plagued by three unpatched SOP bypasses right now Caballero has a history of finding severe bugs in Microsoft browsers. He previously also bypassed the Edge SOP using Edge's new Reading Mode, showed how you could abuse the SmartScreen security filter for tech support scams, and found a serious JavaScript attack in Internet Explorer 11 (still unpatched) . What's more worrisome is that Microsoft has not patched any of the SOP bypass issues the expert discovered. "We have 3 SOP bypasses right now," Caballero told Bleeping Computer today when asked to confirm the status of the three bugs. This month's Patch Tuesday, released two days ago, patched the Edge SmartScreen issue Caballero discovered last December, but the researcher found a way to bypass Microsoft's patch within minutes. Source: Edge Security Flaw Allows Theft of Facebook and Twitter Credentials (Bleeping Computer)
  15. Edge browser still well behind rivals Chrome and Firefox Windows 10 is growing at a slower pace than anyone expected, and as a direct consequence, Microsoft Edge, which is the new default browser in the operating system, is also having a hard time competing against rivals Google Chrome and Mozilla Firefox. NetMarketShare data for the month of February shows that Edge barely moved the needle last month, while its rivals improved their shares in a more substantial manner. Google Chrome is the world’s number one PC browser with a share of 58.53 percent, so nearly 6 out of 10 computers are running this particular browser at the moment. This is undoubtedly impressive, especially because Chrome is not the default browser on Windows, which is the dominating operating system on the desktop. On the other hand, Microsoft’s Internet Explorer dropped to 19.17 percent, and this is a drop that was more or less expected, especially because the browser is no longer actively improved. Internet Explorer isn’t getting any new features, but only security patches and fixes, with Microsoft focusing entirely on Edge in Windows 10. Microsoft Edge performance The third browser in the charts is Mozilla’s Firefox, which is now running on 11.68 percent of the PCs out there, while Microsoft Edge has approximately half of this share despite Redmond’s rather aggressive push for everyone to switch to Windows 10. Edge is running on 5.55 percent of the PCs, up from 5.48 percent the month before, which shows that its adoption is primarily impacted by the limited availability in Windows 10. Microsoft isn’t planning to release Edge browser on a different platform, with the company saying before the launch of Windows 10 that it first wanted to get the app right on its own operating system and then look beyond this possibility. Microsoft Edge, however, is getting a major pack of improvements in the upcoming Windows 10 Creators Update due in April, including new tab options, such as website previews, plus new extensions that are already available for insiders. Source
  16. Google's Project Zero has revealed a bug in Microsoft's Internet Explorer and Edge browsers. First turned up on November 25, the bug offers evildoers a technique that would let a malicious web site crash a visitor's browser as the main course, with code execution as the dessert. Detailed here (https://bugs.chromium.org/p/project-zero/issues/detail?id=1011), the bug works by attacking a type confusion in HandleColumnBreak OnColumnSpanningElement. A 17-line proof-of-concept crashes that process, with a focus on two variables rcx and rax. “An attacker can affect rax by modifying table properties such as border-spacing and the width of the first th element,” Project Zero's post states – so the crafted Web page just needs to point rax to memory they control. The issue was published at the end of Project Zero's 90-day disclosure deadline, and it remains unpatched. Earlier this month, Redmond delayed February's Patch Tuesday, but last week it managed to emit a bunch of fixes for Adobe Flash. ® Source
  17. After announcing last week that February's patches would be delayed until March, Microsoft alerts large customers that security patches are due today--but details remain sketchy Credit: Thinkstock Microsoft sent an email to its largest customers on Monday, alerting them that Adobe Flash Player patches for Internet Explorer and Edge will be coming today. Apparently Microsoft's announcement last week that it would delay February patches until March 14 didn't tell the whole story. Yesterday's email says in part: Microsoft is planning to release security updates for Adobe Flash Player. These updates will be offered to the following operating systems: Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, Windows 10, and Windows Server 2016... No other security updates are scheduled for release until the next scheduled monthly update release on March 14, 2017. These Flash patches are important for those who still use Flash with IE or Edge. There must be three of you out there, somewhere. For those who don’t use Flash-- or who only use Flash from inside Chrome or Firefox or a different browser--the fixes aren’t important. This is a particularly odd situation. The bundled Windows 7 and 8.1 “patchocalypse” patching method has been amended, with Microsoft declaring last month that starting in February, IE patches won’t be included with the monthly Win7 and 8.1 security-only patch: Starting with February 2017, the Security Only update will not include updates for Internet Explorer, and the Internet Explorer update will again be available as a separate update for the operating systems listed above. Of course, we didn’t have a security-only patch in February. In fact, we didn’t have any security patches in February. With Internet Explorer patches being yanked out of the Win7 and 8.1 security-only patches, it’s hard to guess what form these new Win7 and 8.1 patches will take. Adding to the confusion: Microsoft needs to patch Windows Server 2012, which is still stuck on Internet Explorer 10. Perhaps we’ll see a return to the old KB patches for IE10 and 11? Will there be Security Bulletins tying all of this together? The Windows 10 situation is even more obtuse. We have two dangling Win10 hotfix patches – 14393.726 and 14393.729 – which, much to Microsoft’s credit, were released and fully documented but not rolled out the Win10 Automatic Update chute. Will the IE11 and Edge patches for the various versions of Win10 take the form of a cumulative update? And if so, will that cumulative update be issued as a hotfix or will it be pushed onto all Win10 PCs? Will the fix go to 1507 and 1511 systems, in addition to the latest version, 1607? Microsoft hasn’t released corresponding hotfixes for Win10 1507 and 1511. If this patch goes out to 1507 and 1511 PCs, will the analogous hotfixes be issued for those versions? It’s a tangled web Microsoft has woven. Its move to bunch together all patches on all versions of Windows -- and its subsequent backtracking to accommodate well-founded complaints -- increases the complexity enormously. Bunched patches may be part of a “cloud first” future, but they’re hell to install and manage. There’s one point that sticks in my craw: All of this was foreseeable. Adobe has always released its patches on Patch Tuesday, and Microsoft always has to roll those patches into IE11 and Edge. Didn’t somebody see this train wreck coming? Source: Surprise! Microsoft issues Flash patches for Internet Explorer, Edge (InfoWorld - Woody Leonhard) Flash patches for Internet Explorer and Edge due today (AskWoody forums)
  18. Researchers Develop Cross-Browser Fingerprinting Technique Researchers have developed a cross-browser fingerprinting technique that uses operating system and hardware level features. Fingerprinting has been limited for the most part to individual web browsers in the past. If a user switched browsers regularly, fingerprinting could not be used to link the user to these browsers. Fingerprinting tests like the Electronic Frontier Foundation's Panopticlick or BrowserPrint, try to gather data about the browser and underlying operating system. They use all the data to create a fingerprint of the browser/computer combination, and may be able to do the same in future sessions. Cross-browser fingerprinting was out of the picture up until now. While other methods existed to track users across browsers, for instance by requiring them to sign into accounts to use a service or recording IP addresses, no fingerprinting method came close to providing a working solution. Cross-browser fingerprinting The researchers who published the research paper (Cross-)Browser Fingerprinting via OS and Hardware Level Features think that they have found a way. They have created an online service that demonstrates the fingerprinting technique. It is called Unique Machine, and works on any device that supports JavaScript. A click on Get My Fingerprint starts the process. It works, if JavaScript is enabled, and if connections to a few sites are allowed. The scan takes a couple of seconds to complete. The result is a browser fingerprint, and also a computer fingerprint; the latter is not finalized yet and still in development. You may hit the details button on the Unique Machine website for the list of tested cross-browser features. The following features are tested currently: Time Zone. Number of CPU Cores. Fonts. Audio. Screen Ratio and depth. WebGL. Ad Blocking. Canvas. Cookies. Encoding. GPU. Hash values of GPU rendering results. Language. Plugins. The idea is now that you will get similar results when you use a different browser on the same system to run the fingerprinting test a second time. The researchers state that the technique identified 99.2% of users correctly. The sample size is a bit small, 1903 users and 3615 fingerprint samples. I ran tests on a machine using different browsers, and results were mixed. The computer fingerprint was identical when I ran the fingerprinting test in Chrome, Chrome Canary and Vivaldi, but different in Firefox and Edge. The three browsers the hash was identical in are all based on Chromium. This is probably the reason why the fingerprint was identical. The source code of the cross browser fingerprinting site is available on GitHub. Now You: Did you cross-browser fingerprinting work on your devices? Source
  19. Microsoft Edge Browser Accused of Displaying Fake News in New Tabs News outlet partnership go wrong for Edge users All the news is delivered by MSN with help from news outlets across the world, and while at first glance everything should be pretty helpful for users, it turns out that the browser is suffering from an issue that the Internet is trying to deal with as we speak: fake news. A number of users have turned to the built-in Windows 10 Feedback Hub app to complain about what they claim to be fake news displayed in Microsoft Edge, explaining that the balanced news that they should find in the browser do not exist and most sources are trying to give articles a certain spin that shouldn’t be there. “I have been disgusted to read such clearly slanted stories. I would prefer to read news reports that allowed me to draw my own conclusions that did not seem intent on spinning the news in one direction or another. It is time that you offered BALANCED news instead of relying on your partnerships with news outlets that clearly have an agenda in their news reporting,” one such comment reads. Microsoft still tightlipped Microsoft Edge does not allow users to edit news sources, but only to choose the categories they want to receive articles for, so there’s no way to deal with the alleged fake news without the company’s own tweaks. Of course, Microsoft Edge does not deliberately spread fake news, and if this is indeed happening, it’s only the fault of the sources that the browser is configured to use to show articles in the start page and in new tabs. Microsoft, however, hasn’t said a single thing until now and is yet to respond to the suggestion posted in the Feedback Hub, so it remains to be seen if the company gives more power to users to configure news sources or if the company itself removes sources involved in spreading fake news. Source
  20. Last month Windows 7 usage share went down in concert with the Windows 10 uptick Credit: Eliot Phillips via Flickr Windows usage numbers for January are in, and they aren't surprising. Depending on whether you trust StatCounter's or NetMarketshare's numbers, Windows 10 usage in January was up 0.6 or 0.9 percentage points, respectively, compared to December. At the same time, Windows 7 usage decreased by 0.2 (see screenshot) or 1.1 percentage points, respectively. InfoWorld Of course, those numbers should be taken with several heaping teaspoons of salt. As I explained a couple of months ago, there are major faults in the companies' measurement methods. The best that can be said is that their numbers are more-or-less comparable when taken month to month. The unexplained six-month bump in StatCounter’s “Unknown” operating system count seems to have leveled off again. Meanwhile, the browser wars have turned into a mop-up operation, with Chrome far out ahead and increasing its lead. Month-to-month, Chrome saw increases of 0.7 (StatCounter) or 1.5 (NetMarketshare, screenshot) percentage points. Microsoft’s browsers continued to muddle along. According to StatCounter, Edge use increased 0.1 points, while NetMarketshare pegged it at 0.15 points. IE usage was up 0.3 per StatCounter, and down 1.1 points, according to NetMarketshare's measurements. InfoWorld I draw a couple of conclusions from these numbers. Windows 10 adoption, which stalled completely after the free upgrade disappeared in August, has resumed a very slow increase in usage. Windows 7 continues to run on roughly half of all PCs, although its use is slowly declining. And Microsoft’s browsers are getting trounced, with no improvement in sight. The lack of movement doesn’t bode well for Microsoft’s Universal Windows Platform--the Windows Store apps that continue to underwhelm. As Mary Jo Foley reported in ZDNet, Microsoft seems to be betting on Universal apps to drive a distant-future operating system, “a simplified version of Windows 10 that will be able to run only Unified Windows Platform (UWP) apps installed from the Windows Store.“ With Windows 10 usage increasing at a snail’s pace and Edge barely registering on the meter, you have to wonder where Microsoft will come up with compelling UWP apps for this new “Windows 10 Cloud” operating system. Steve Ballmer has left the field, but his “Developers, developers, developers!” exhortation still resonates. Where have they all gone? The discussion continues on the AskWoody Lounge. Source: Windows 10 usage rises slightly, Edge still floundering (InfoWorld - Woody Leonhard)
  21. Microsoft is no stranger to pissing people off, particularly when it comes to Windows 10. There have been endless cries about forced updates, complaints about ads, moaning about privacy, and now the CEO of Vivaldi has lashed out at the company for its anti-competitive practices with Microsoft Edge. Jon von Tetzchner says that Microsoft has forgotten about the "actual real-life people that use technology in their daily lives." He takes particular umbrage at Windows 10's continued insistence of resetting the default browser to Edge. Indicating that his patience has now run out, von Tetzchner points to a 72-year-old friend who was confused by the change and unable to reverse things. He says that Microsoft is failing to respect the decisions made by users, and this is something that needs to stop. Every time Windows 10 upgrades, it changes the default browser to Edge. Same thing tends to happen when a new browser is installed -- for some reason, it leads to restoring Edge as the default option. Not the new browser, and not even the browser that was there as a default one previously. Microsoft has made it complicated for a non-technical user to bring their old default browser back. As someone involved in the development of software, von Tetzchner is acutely aware of the desire to increase user numbers. But this is not an excuse for foisting unwanted software onto people: Our goal as technology companies should be to provide great software to our users. At the same time, we should accept that some users prefer software created by other companies. It is our responsibility to be fair to the users, and this is what should drive the technology industry forward. Stripping users of their ability to choose or forcefully limiting their options stalls progress. Focusing on building great products is what should drive us to excel. He concludes with a simple question and a simple demand of Microsoft: Where has the user's absolute prerogative to make a choice gone? It is time to do the right thing. Stop stealing the default browser, accept user choice and compete on the merits. Do you feel that Microsoft has been taking liberties and acting anti-competitively? Article source
  22. Scammers Can Use Microsoft Edge Security Feature to Display Fake Warnings Security researcher finds way to abuse SmartScreen Manuel Caballero explains in a blog post that Microsoft Edge has a vulnerability that allows ms-appx: and ms-appx-web: commands to generate fake alerts very similar to the one issued by SmartScreen and which could be used in more complex schemes. For example, the attackers can use these warnings to convince unsuspecting victims to call a phone number, where phone scammers would attempt to steal users’ information. “As a bonus, when we place a telephone-like number, a link is automatically created so the user can call us with a single click. Very convenient for these scammers,” the researcher notes. Microsoft’s SmartScreen SmartScreen is a feature that’s available in both Microsoft Edge and Internet Explorer, but this bug has been demonstrated only in the default Windows 10 browser. In essence, SmartScreen is a super helpful feature that keeps users protected from websites that could be used to spread malware. “SmartScreen checks the sites you visit against a dynamic list of reported phishing sites and malicious software sites. If it finds a match, SmartScreen will show you a warning letting you know that the site has been blocked for your safety,” Microsoft explains. Microsoft is working hard to improve browser security in Edge, so it goes without saying that this is going to be fixed for sure in the coming updates. Edge receives updates on a regular basis and large OS updates, such as the upcoming Creators Update, bring a plethora of improvements for the browser, including features and fixes that are specifically supposed to make the app faster, more reliable and secure. Source Dear $h*t MS & Sh*tya Nudella, Don't ever tell Win 10 is secure than older or other OS'.
  23. Firefox Edge Theme Makes Firefox Browser Look like Microsoft’s Edge Get the Windows 10 browser look in Mozilla Firefox Basically, you can make Mozilla Firefox look just like Microsoft Edge, all by installing a simple theme file and without feeling like losing anything from the browser. “Firefox Edge is a theme for Mozilla Firefox that closely replicates the look of Microsoft Edge (both light & dark themes) without losing any features of Firefox. The theme is applied only to the top level visuals, meaning that context, popup etc. menus will keep their default look,” the developer of the theme says in a post on Github. The theme has already been tested on Windows 10 and Firefox 50, but it should work flawlessly on the latest versions of the browser and the newer builds of Microsoft’s operating system. If you want to install the theme on your computer, what you need to do is to install the Stylish addon for Firefox and then go to the Firefox Edge userstyles page. Choose between light or dark (check out the screenshots below to see what they both look like) and then click the “Install with Stylish” button. It goes without saying that this theme is completely free, so give it a try right now to see if the minimalistic look of Microsoft Edge matches your own Firefox style. Source
  24. Microsoft has turned on a new set of Windows Tips that inform Chrome and Firefox users on Windows 10 that Edge is a “safer” browser. We reached out to Microsoft to find out how long this latest recommendation has been active. “This wave of Windows Tips for Windows 10 users began in early November,” a Microsoft spokesperson told VentureBeat. If this sounds familiar, that’s because Microsoft turned on similar Windows 10 tips back in July, warning Chrome/Firefox users about battery drain and then recommending Edge instead. Those notifications were on the battery icon in the operating system, while this new one is on the Edge icon: Reddit user by “illCodeYouABrain” noted the prompt happened when launching Firefox, although not every time. We confirmed with Microsoft that the same “tip” was active for Chrome as well. In July, a Microsoft spokesperson told us that “these Windows Tips notifications were created to provide people with quick, easy information that can help them enhance their Windows 10 experience.” This time, the spokesperson added that Windows 10 users can always change default settings and preferences, including turning off these notifications in their system’s settings (for those interested, open the Settings app => System => Notifications => Disable “Get tips, tricks and suggestions as you use Windows”). The battery drain “tip” was timed with Microsoft’s battery-savings campaign for Edge, and this security one is no different. NSS Labs compared the security of the three major Windows browsers and unsurprisingly — Microsoft has a long history of asking NSS Labs to do a study in which its browser comes out on top, though it claims this one wasn’t commissioned — Edge won in a particular metric. That’s where the “It blocks 21% more socially engineered malware” part from the notification comes from. Security is of utmost importance in browsers, and Edge is actually quite secure. For a long time now, Microsoft has been pushing the envelope in security, and it’s understandable the company wants to highlight that. But as we noted last time, leveraging notifications within Windows 10 to promote cherry-picked results could be seen as poor practice. Google and Mozilla don’t have the option to do the same in Windows 10 if they want to highlight the strengths of Chrome or Firefox, respectively. We’re already used to Google’s search engine pushing Chrome, Yahoo linking to Firefox, and Bing recommending Edge. This year, Microsoft has upped the ante in the browser war with Windows 10. Article source
  25. October numbers are in, and they don’t bode well for Windows 10 or its browser. The latest NetMarketShare numbers show: Windows 10 moved imperceptibly up from 22.53% in September to 22.59% in October Windows 7 also nudged higher, from 48.27% to 48.38% Edge went from 5.16% in September to 5.26% in October IE decreased from 25.48% in September to 23.13% in October Firefox was the big winner, remarkably, going from 9.19% to 11.14%. Over on the StatCounter side of the fence: Win10 slid up a tiny bit from 24.42% in September to 24.81% in October Win7 went from 39.4% to 38.97% Edge stayed flat from 3.01% in September to 3.06% in October IE lost a whole point from 10.73% to 9.73% You can interpret the numbers any way you like – and keep in mind that both NetMarketshare and StatCounter measure usage massaged in specific ways. But the takeaway is clear: Win10 and Edge certainly aren’t ringing any chimes. You just have to wonder how many Win10 machines were sold in October, and how that affects the usage number. If there were, say, 20 million Win10 machines sold in October, surely that would bump the Win10 share up a bit. Are there a lot of people reverting to Win 7 or 8.1 – or giving up on Windows entirely? Source: Windows 10 usage falters, Edge goes nowhere at all (AskWoody.com)
  • Create New...