The Indian government has issued a warning about a serious security issue in Microsoft Edge, the Chromium-based browser used on Windows and other platforms.
CERT-In, India’s cybersecurity agency, has flagged a vulnerability that could allow hackers to bypass device security and trick users into sharing sensitive personal information.
This alert comes after Microsoft included the issue in its January 2026 release notes, urging users to be cautious.
What Is the Microsoft Edge Security Issue?
According to CERT-In, the problem lies in Edge’s WebView tag, where insufficient policy enforcement can be exploited by attackers.
A hacker could create a specially crafted webpage and convince a user to visit it, potentially gaining access to private data.
While vulnerabilities like this aren’t uncommon, they become risky when users are lured by emails or links that appear legitimate, making it easier for hackers to carry out attacks.
Who Is Affected and How to Protect Yourself
This vulnerability affects both individuals and businesses using Microsoft Edge.
If your browser version is older than 143.0.3650.139, it is crucial to update immediately.
To update Microsoft Edge on Windows:
Click the three-dot menu at the top-right corner of the browser.
Hover over Help and Feedback.
Click About Microsoft Edge.
The browser will automatically check for updates, download the latest version, and prompt you to restart to complete the update.
Keeping Edge updated ensures you are protected against this vulnerability and other potential security risks. Regular updates are the best way to safeguard your data from hackers.
