this post was submitted on 06 May 2026
767 points (98.5% liked)

Technology

84569 readers
3904 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
767
Microsoft Edge loads your passwords into memory in plaintext, but Microsoft says not to worry (www.windowscentral.com)
submitted 1 week ago by Itwasntme223@discuss.online to c/technology@lemmy.world
111 comments fedilink hide all child comments
(page 2) 50 comments
sorted by: hot top controversial new old
[–] nutsack@lemmy.dbzer0.com 3 points 6 days ago

don't worry bb

[–] sturmblast@lemmy.world 2 points 6 days ago

.... They are so bad

[–] baronvonj@piefed.social 177 points 1 week ago (2 children)

Microsoft SSH agent persistently stores your unencrypted private keys in the registry. They're still there unlocked and usable after you reboot.

https://github.com/PowerShell/Win32-OpenSSH/issues/1487

[–] mbp@slrpnk.net 31 points 1 week ago (1 children)

God, the final comment in that thread makes my blood boil.

load more comments (1 replies)
load more comments (1 replies)
[–] quantumvoid0@programming.dev 106 points 1 week ago (3 children)

does this company intentionally want users to stop using it? cuz day by day either theres a new windows bug or just shittier softwares

[–] Senseless@feddit.org 17 points 1 week ago (1 children)

Not to worry, the next update will fix it. (And make 12 others things worse. Also it will make your printer stop working. Again.)

[–] quantumvoid0@programming.dev 1 points 6 days ago

as if it ever worked with windows anyway...lol...got it working on linux on the first try

load more comments (2 replies)
[–] GainGround@kopitalk.net 51 points 1 week ago (2 children)

Our lives are in the hands of morons. What the fuck.

load more comments (2 replies)
[–] Reygle@lemmy.world 49 points 1 week ago (2 children)

HOLY @#%^ WHAT IN THE @#%^ DO THEY MEAN "NOT TO WORRY"?????????????????

[–] XLE@piefed.social 32 points 1 week ago (2 children)

Well, hold on now, maybe Microsoft has a reasonable explanation for how they actually do secure their passwords...

This is an expected feature of the application.

... Never mind.

load more comments (2 replies)
load more comments (1 replies)
[–] 58008@lemmy.world 32 points 1 week ago (6 children)

2026 is gonna be the year I finally move to Linux. I have huge concerns about many aspects of switching, but they're being overtaken by concerns about staying with Windows. I don't even mind if my overall user experience is a bit worse on Linux (I am trying to have reasonable expectations that it won't be the walk in the park Linux advocates on Lemmy like to claim), I just have much more faith in its security, privacy, customisability and - most importantly - the motivations and intentions of its developers.

[–] BozeKnoflook@lemmy.world 18 points 1 week ago

Best of luck! If you've got questions or problems feel free to DM me (or reply here) and I'll try to help as best I can. I've been using linux since the mid 90s, so I have a decent idea of how it all works :)

[–] Throbbing_banjo@lemmy.dbzer0.com 12 points 1 week ago (2 children)

If you move to one of the big supported distributions, you'll be extremely surprised how easy it is.

If you just want things to stay consistent and easy, I can't recommend Linux mint enough. I installed it on my son's laptop almost two years ago and he's never needed my help to fix anything since.

The installation walks you through everything, just like Windows, but it'll only take about the third of the time. Everything just works and there's no trash to uninstall or debloat scripts to run when you're done.

If you do any gaming you might want to run Fedora or bazzite (fedora with training wheels), but if you're using KDE for the desktop that's almost as easy and seamless.

load more comments (2 replies)
load more comments (2 replies)
[–] goatinspace@feddit.org 22 points 1 week ago

[–] zerofk@lemmy.zip 20 points 1 week ago (3 children)

Access to browser data as described in the reported scenario would require the device to already be compromised.

Yes you can open our safe with just a good yank but if a thief can do that they’re already in your house.

[–] rbos@lemmy.ca 1 points 6 days ago

Defense in depth is a thing. You don't give up just because someone made it through the first layer.

[–] SeductiveTortoise@piefed.social 1 points 6 days ago

And who in their right mind would break in to a house built by Microsoft?

load more comments (1 replies)
[–] azvasKvklenko@sh.itjust.works 19 points 1 week ago (1 children)

I don’t worry, I just don’t use Edge or Windows or any MS software really (except for Teams at work)

[–] myrmidex@belgae.social 2 points 6 days ago

Teams at work

Same here. Boss still thinks he's funny bashing Apple products as a MS fanboy 🙄

[–] Quazatron@lemmy.world 18 points 1 week ago (1 children)

Microsoft - So secure we ROT13 encode everything... TWICE!

[–] LeFrog@discuss.tchncs.de 13 points 1 week ago

Ah yes, the good old ROT26 encryption. Some say its unbreakable

[–] darkmogool@feddit.org 15 points 1 week ago

Why did I read "Microsoft Edge lords"?

[–] SCmSTR@lemmy.blahaj.zone 14 points 1 week ago

And this is why you don't give microslop anything

[–] iglou@programming.dev 14 points 1 week ago* (last edited 1 week ago) (1 children)

Eh. To be honest it indeed does not matter much. Scanning your RAM for passwords is much harder than simply reading them off the browsers files. Sure, it is encrypted and the key is not necessarily on your computer, but remember that if the software can decrypt your passwords without you inputting a password or similar, then anything with access to your device can as well.

Don't use your browser's password manager.

[–] badgermurphy@lemmy.world 1 points 6 days ago (1 children)

For real. Like why isn't that a plugin? I feel like security best practices have advised against using the baked-in password manager in the browser for near a decade now, so any browser claiming an interest in security could score a big win by literally just removing that functionality.

Its a disservice that they even exist st all at this point.

[–] iglou@programming.dev 1 points 6 days ago

Or simply... Make it encrypted with a password. That simple.

[–] AbsolutelyNotAVelociraptor@piefed.social 14 points 1 week ago (3 children)

They say not to worry because they know nobody uses that dumpster fire of a browser so there's no actual risk of your passwords being leaked since you're not using it anyways.

load more comments (3 replies)
[–] gokayburucdev@lemmy.world 10 points 1 week ago* (last edited 1 week ago)

we will take your data but don't worry be happy 😁 🇯🇲 we will not use it. Because we are smoking ganja and smiling to each other in our office. We are so happy; Thanks to AI. Peace ☮️✌️😁🕶️

Microslop Edge Team

load more comments
view more: ‹ prev next ›