Microsoft Edge: Enhanced Security Mode Plus

🚨 The Signal: Microsoft Edge gains 'Enhanced Security Mode Plus,' allowing administrators to restrict browser features like network protocols, hardware APIs, and WebGL. This significantly reduces the browser's attack surface, bolstering endpoint security against web-based threats.

The Impact

Security teams and administrators are affected, gaining new controls to reduce browser-based attack vectors, mitigating web-borne malware and exploits.

  • Security Teams: New capabilities to harden browsers, reducing web-based attack surface.
  • Administrators: Must configure and manage new security policies for Edge.
  • End Users: May experience restricted functionality on some websites due to stricter browser controls.
  • Organisations: Improved protection against browser exploits and malware delivery.

The Action

  1. Review Microsoft Edge documentation for 'Enhanced Security Mode Plus' capabilities.
  2. Assess current browser security posture and identify areas for hardening.
  3. Define granular policies for restricting network protocols, APIs, and WebGL based on organisational risk.
  4. Pilot 'Enhanced Security Mode Plus' with a small user group to identify compatibility issues.
  5. Deploy 'Enhanced Security Mode Plus' policies via Group Policy or Intune to target devices.

Domain: M365-Apps · Impact: high · Workload: M365 Apps · Essential Eight: User Application Hardening, Application Control · ISM: ISM-0843, ISM-1412, ISM-1485, ISM-1486, ISM-1490, ISM-1542, ISM-1544, ISM-1582, ISM-1585, ISM-1656, ISM-1657, ISM-1658, ISM-1659, ISM-1660, ISM-1667, ISM-1668, ISM-1669, ISM-1670, ISM-1823, ISM-1824, ISM-1859, ISM-1860, ISM-1870, ISM-1871