Microsoft Edge: Extensions monitoring in the Edge management service

🚨 The Signal: Microsoft Edge management service now offers a centralized view of installed browser extensions, enabling administrators to monitor, assess risk, and manage extension requests. This enhances visibility and control over browser-based attack surfaces.

The Impact

Security teams and Edge administrators are affected, gaining better visibility into browser extension risks.

• Security teams: Improved visibility into browser extension risks.
• Edge administrators: Centralized management of extension requests.
• Managed users: No direct impact unless policies change.
• Organisations: Enhanced control over browser-based attack surface.

The Action

1. Navigate to the Microsoft Edge management service.
2. Locate and enable the 'Extension monitoring' feature.
3. Review the consolidated list of installed extensions.
4. Establish or refine internal processes for reviewing and approving extension requests.
5. Implement configuration policies to control extension deployment based on risk assessment.

Domain: M365-Apps · Impact: medium · Workload: M365 Apps · Essential Eight: Application Control, User Application Hardening · ISM: ISM-0843, ISM-1412, ISM-1485, ISM-1486, ISM-1490, ISM-1542, ISM-1544, ISM-1582, ISM-1585, ISM-1656, ISM-1657, ISM-1658, ISM-1659, ISM-1660, ISM-1667, ISM-1668, ISM-1669, ISM-1670, ISM-1823, ISM-1824, ISM-1859, ISM-1860, ISM-1870, ISM-1871