Microsoft is restricting access to Internet Explorer mode in the Edge browser due to zero-day exploits in the Chakra JavaScript engine used by threat actors. These exploits allowed hackers to gain remote code execution and full device control, prompting Microsoft to implement more strict controls. #ChakraZeroDay #IEModeSecurity
Keypoints
- Hackers exploited a zero-day vulnerability in Microsoft’s Chakra JavaScript engine to target Edge users.
- Microsoft limited access to Internet Explorer mode to make exploitation more difficult for attackers.
- The threat actors used social engineering to lure users into loading compromised legacy websites in IE mode.
- The exploited vulnerabilities in Chakra remain unpatched at this time.
- Microsoft recommends migrating from Internet Explorer to modern, more secure web technologies.