Take Quiz

Your name and email are stored only in your browser local storage for convenience. They are not retained server-side.

NameEmail

Question 1

What was the initial Microsoft Edge behavior regarding password storage in RAM, and how did Microsoft respond upon media exposure?

Edge never stored passwords in RAM; the claim was refuted by Microsoft and no changes were made. Edge encrypted passwords in RAM by default, and Microsoft confirmed this was the correct behavior after researcher reports. Edge stored passwords in RAM but only for the current user session; Microsoft justified this as a secure practice and still maintains it. Edge stored all saved passwords in cleartext RAM on startup as intended behavior, but Microsoft quickly updated Edge to stop this after public scrutiny.

Question 2

Regarding the BitLocker bypass vulnerability (YellowKey) disclosed by Chaotic Eclipse, what is the primary mitigation recommended by security researchers?

Using a BitLocker PIN combined with a BIOS password lock to prevent unauthorized access via the recovery environment. Encrypting the EFI partition with a secondary key to block YellowKey exploit that targets EFI partition files. Disabling TPM integration to eliminate automatic unlocking and force manual password entry every boot. Relying on TPM-only BitLocker configurations without a PIN, as these are less vulnerable to the bypass.

Question 3

What distinguishes Microsoft’s multi-model agentic scanning harness (Codename MDASH) from single-model AI vulnerability scanners?

MDASH relies solely on a single advanced large language model trained on Windows kernel source code for vulnerability discovery. MDASH only scans user mode applications, ignoring kernel and network stacks to reduce false positives. MDASH performs only static analysis without executing or dynamically validating found vulnerabilities. MDASH orchestrates over 100 specialized AI agents across multiple models for discovery, debate, validation, and exploitation proof, improving coverage and precision.

Question 4

How does Microsoft’s threat modeling for Edge relate to the password storage vulnerability discovered by Tom Rønning?

Microsoft’s threat model assumes any user account, even non-admin, cannot access Edge passwords in memory. Microsoft’s threat model excludes scenarios where an attacker has administrative control and focuses on network remote attacks. Microsoft initially considered saving passwords in RAM a vulnerability outside their expected threat model. Microsoft considers attacks requiring capturing passwords from RAM as within the threat model only if the attacker already has administrative control.

Question 5

According to the episode, what risk arises from using AI to generate production websites without security expertise?

AI always applies strict security controls automatically, so site creators without background are not at risk of exposure. AI-created websites inherently use outdated cryptography that is easily broken by attackers. AI-generated sites are more secure because they avoid human coding errors and reduce attack surface. AI-generated sites may inadvertently expose secret API keys in publicly accessible JavaScript, enabling attackers to hijack services or run up costs.

Cancel

Episode #1079 Quiz

Question 1

Question 2

Question 3

Question 4

Question 5