Microsoft Edge: v.142 - Open external links in another profile when recommended by external applications

🚨 The Signal: Microsoft Edge will now prioritize application-recommended profiles for external links over user-set defaults. This changes how sensitive links might open, potentially exposing data to unintended profiles.

The Impact

Users and security teams are affected by potential data exposure if sensitive links open in less secure or personal profiles.

• End users: Links may open in unexpected profiles, mixing work and personal data.
• Security teams: Increased risk of data leakage if sensitive links open in unmanaged profiles.
• Admins: New policy to manage requires review to prevent unintended data exposure.

The Action

1. Review the 'EdgeOpenExternalLinksWithAppSpecifiedProfile' policy in Microsoft Intune or Group Policy.
2. Decide whether to enable or disable the policy based on organizational data separation requirements.
3. Communicate the change to end-users regarding how external links will now open.
4. Update internal documentation on managing Edge profiles and external link handling.

Domain: M365-Apps · Impact: medium · Workload: M365 Apps · Essential Eight: User Application Hardening · ISM: ISM-1412, ISM-1485, ISM-1486, ISM-1542, ISM-1585, ISM-1667, ISM-1668, ISM-1669, ISM-1670, ISM-1823, ISM-1824, ISM-1859, ISM-1860