Serious Discussion Microsoft Edge Stable (Chromium) Now Available for Download

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,057

Microsoft Edge may be sending search results to Microsoft! Here is how you turn that off​

How to check if Microsoft Edge is sending search data to Microsoft
  1. Load edge://settings/privacy#searchServiceImprovement in the Microsoft Edge web browser; this should load the relevant setting right away. Microsoft's prompt has a "manage setting" button, but it does not reveal the name of the setting and you are taken to the top of the privacy and security settings page of Edge.
  2. Toggle "Help improve Microsoft products by sending the results from searches on the web" to off to disable it (under Search and service improvement).
A support page on the Microsoft website explains what Microsoft is collecting and how it uses the data.

Microsoft may collect:
  • the search term
  • the search results that are displayed.
  • the interaction with the search results, including links that are clicked on.
  • demographic data.
Other data may be collected, but the four items above are listed explicitly by Microsoft. All the data is collected to improve the user experience in Edge, Bing, Microsoft News and other company services according to Microsoft.

Microsoft claims that it scrubs and de-identifies data by "removing data identifying the person or device from which it was collected", that it does not use the data to "personalize or provide ads", that it never associates the data with an account or device, and that the feature is not available on managed devices.
 

brambedkar59

Level 29
Verified
Top Poster
Well-known
Apr 16, 2017
1,869
Man I always get the weirdest bugs on Edge. Got this one on Win 11 clean install for a several days no fix yet. Even changed several Intel drivers.

Also tried enabling/disabling several other things: in Windows graphics settings: hardware accelerated gpu scheduling, Variable refresh rate
and in Intel GCC: Panel self refresh, display power savings, adaptive tessellation, adaptive sync, smart sync etc.
Edit: PS feedback sent already.

I think Intel driver v30.0.101.1191 solved the issue for me. Have not seen the bug for more than a day now.
 

Gandalf_The_Grey

Level 76
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,505
I think Intel driver v30.0.101.1191 solved the issue for me. Have not seen the bug for more than a day now.
 

upnorth

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,457
Each and every update requires users to scan Settings and disable all new unwanted "features", which are usually self-explanatory.

When in doubt, default to "Off". (y);)
power.jpg
 

Sammo

Level 7
Verified
Well-known
Jan 27, 2012
332

wat0114

Level 11
Verified
Top Poster
Well-known
Apr 5, 2021
549
Good Gravy there's a lot of tinkering to do under the hood of this browser :eek: Currently Im running the Beta Version 97.0.1072.41 (Official build) beta (64-bit) on Linux MX-21 hardened with Apparmor no less. I'm seeking browser security analogous to Fort Knox surrounded by ADX Florence, of course at the expense of giving up a little privacy to the Microsoft Overlord, the Guardians of the Windows Galaxy :D After all, you can't get something for nothing in life.
 
Last edited:
F

ForgottenSeer 92963

Good Gravy there's a lot of tinkering to do under the hood of this browser :eek: Currently Im running the Beta Version 97.0.1072.41 (Official build) beta (64-bit) on Linux MX-21 hardened with Apparmor no less. I'm seeking browser security analogous to Fort Knox surrounded by ADX Florence, of course at the expense of giving up a little privacy to the Microsoft Overlord, the Guardians of the Windows Galaxy :D After all, you can't get something for nothing in life.
When you have got AppArmor profile for Firefox and an option to run it Firejailed also, why bother with Edge on Linux?
 

wat0114

Level 11
Verified
Top Poster
Well-known
Apr 5, 2021
549
When you have got AppArmor profile for Firefox and an option to run it Firejailed also, why bother with Edge on Linux?

Mostly out of curiosity and the intrigue of seeing what it would take to build the Apparmor profile for it. It is clear to me there's a ton more code contained in both MS Edge and Google Chrome, than there is in Firefox. The process for building Chrome-based browser profiles is rather painstaking. Somehow I also, admittedly, have this fascination and drive to run the most secure browser setup possible. I'm pretty sure the sandbox on Windows and Linux for Chrome and Edge is superior to that of Firefox. Oh yeah, and also I need a Chromium-based browser to watch Netflix content :)
 
F

ForgottenSeer 92963

@ticklemefeet

In terms of containment it is stronger than sandboxie (AppContainer has lower rights than Untrusted). Try running Sandboxie with HitmanPro.alert and you will be scared of the HMPalert warnings. Security specialists say that the extra security Sandboxie offers comes with a price of adding holes in the browser sandbox (making it weaker potentially).

on the other hand Sandboxie's sandbox is stronger than for instance Comodo's and Avast's sandbox and I don't know of any malware which escaped those AV-sandboxes. Also the intervention of Sandboxie changes some stuff internally reducing the chance that a browser vulnability can be used and reproduced in a predictable way (security through obscurity).

I really can't give you a straightforward answer simply because there is no real life data in which both sandboxes were put on the bench in transparant and verifiable AB-tests. i thought @plat1098 and Wat0114 use Sandboxie with Firefox and/or Chrome/Edge, so maybe they would be so kind to post their experience with sandboxie.
 
Last edited by a moderator:

wat0114

Level 11
Verified
Top Poster
Well-known
Apr 5, 2021
549
i thought @plat1098 and @wat0114 use Sandboxie with Firefox and/or Chrome/Edge, so maybe they would be so kind to post their experience with sandboxie.
I haven't used Sandboxie in years, so I really can't offer any feedback on it's current abilities, and the program of course has been in the hands of different developers since Ronan Tzur abandoned it years ago.

BTW, a recent malware strain called Phorpiex is actually Sandboxie aware:


Evasion techniques

Phorpiex Tldr uses simple sandbox evasion techniques. When started, it calls the GetModuleHandle() API function to check if one of the following modules is loaded in its process:

  • SBIEDLL.DLL
  • SBIEDLLX.DLL
  • WPESPY.DLL
  • DIR_WATCH.DLL
  • API_LOG.DLL
  • DIR_WATCH.DLL
  • PSTOREC.DLL

 

oldschool

Level 81
Verified
Top Poster
Well-known
Mar 29, 2018
7,044
Last edited:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top