Microsoft Locks Down IE Mode After Hackers Exploited Legacy Feature
Microsoft has restricted IE Mode in Edge after threat actors exploited Chakra engine flaws for remote access.
According to the Microsoft Browser Vulnerability Research team, threat actors were using basic social engineering techniques alongside unpatched (0-day) exploits in Internet Explorer's JavaScript engine (Chakra) to gain access to victim devices.
Threat actors were leveraging basic social engineering techniques alongside unpatched (0-day) exploits in Internet Explorer's JavaScript engine (Chakra) to gain access to victim devices.
- Threat actors tricked users into visiting a legitimate-looking website.
- A flyout on the page instructed users to reload the page in IE mode.
Microsoft received "credible reports" in August 2025 about the exploitation and has since revamped the IE mode in its Edge browser.
Author's summary: Microsoft restricts IE Mode due to hacking concerns.