Security News > 2020 > March > Microsoft to Add Compromised Password Notification to Edge

Microsoft to Add Compromised Password Notification to Edge
2020-03-30 18:25

While the affected service may reset passwords to prevent abuse, it's not uncommon for users to set the same password for other websites as well, leaving them exposed to credential stuffing attacks.

Microsoft says the Password Monitor feature in Edge will notify users if the password they are entering using autofill has been offered for sale on dark web sites.

"If Microsoft Edge uncovers a match with any of your saved username + passwords, you will receive a notification from within the browser prompting you to take action," explained Microsoft's Liat Ben-Zur.

"Through a dashboard in Settings, you can view a list of all leaked credentials and get routed to their respective websites to change your password. Once the password has been changed, save the new credential to autofill and continue browsing with peace of mind knowing that Microsoft Edge and Password Monitor have your back."

It's worth noting that Firefox and Chrome have been warning users about compromised passwords since October 2019 - that is when they added the feature to their built-in password manager.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/nqPkdFYBVec/microsoft-add-compromised-password-notification-edge

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2819 161 4399