Indian govt warns against Microsoft Edge bugs that could let hackers steal data: How to stay safe

Indian government has issued a warning to users of Microsoft's Edge web browsers over multiple vulnerabilities that could le to users' data getting stolen by hacker. government's cyber security wing, Indian Computer Emergency Response Team, has listed a series of bugs that can be exploited by hackers to ir vantage. According to details shared by India's cyber security agency, se bugs can be used by cyber criminals to bypass browser's security and 'execute arbitrary code on targeted system'.

CERT-In, in its warning, said that a cybercriminal could exploit vulnerabilities in Microsoft Edge simply by sending a special request. This, in turn, would let hackers to gain access to targeted system, which can n be used for stealing user data.

"se vulnerabilities exist in Microsoft Edge due to insufficient data validation in Mojo, inappropriate implementation in V8 and integer overflow in layout. A remote attacker could exploit se vulnerabilities by sending a specially crafted request to targeted system," CERT-In wrote in its warning.

What are Microsoft Edge vulnerabilities and how do y affect users?

CERT-In highlighted three vulnerabilities pertaining to Microsoft Edge. first vulnerability, CVE-2024-7025, pertained to integer overflow in Edge layout, while second vulnerability, CVE-2024-9369, le to insufficient data validation in Mojo. third vulnerability, CVE-2024-9370, le to inappropriate implementation in V8.

Simply put se bugs could le cyber criminals to send a special request to Microsoft Edge to trick into implementing a harmful code. This code, based on what it is programmed to do, could give hackers unauthorised access over targeted system and ultimately user data.

Who is affected by Microsoft Edge vulnerabilities?

All users running Microsoft Edge prior to version 129.0.2792.79 are affected by se bugs.

How can Microsoft Edge users safeguard mselves?

Microsoft Edge users can protect mselves from se vulnerabilities by downloing latest version of web browser on ir PCs. Microsoft says that it has released "Microsoft Edge Stable Channel (Version 129.0.2792.79) and Microsoft Edge Extended Stable Channel (128.0.2739.107) which incorporate latest updates of Chromium project" and fixes se bugs.