Microsoft Enhances Chrome Security by Preventing Admin-Level Launches on Windows
Microsoft is bolstering the security of Google Chrome on Windows by introducing a feature that prevents the browser from running with administrator privileges. This initiative aims to mitigate risks associated with malware and malicious extensions that could exploit elevated permissions.(ITdaily.)
🔐 Key Highlights
-
Automatic De-Elevation: When users attempt to launch Chrome with administrator rights, the browser will now automatically restart without these elevated privileges. This change reduces the risk of malicious software gaining full system access through the browser.(ITdaily.)
-
Inspired by Microsoft Edge: Microsoft implemented a similar feature in its Edge browser in 2019. The company has now contributed this functionality to the Chromium project, which underpins both Edge and Chrome. The update was submitted by Microsoft engineer Stefan Smolen and has been integrated into the Chromium codebase .(ITdaily., gHacks Technology News)
-
Seamless User Experience: For most users, this change will be transparent. Chrome will handle the de-elevation process automatically, ensuring a secure browsing experience without additional user intervention.(gHacks Technology News, TechRadar)
-
Exemptions for Automation: Processes running Chrome in automation mode, such as automated testing tools, will not be affected by this change. This ensures that development and testing workflows remain uninterrupted .(gHacks Technology News)
🛡️ Security Implications
Running browsers with administrator privileges can expose systems to significant security threats. Malicious extensions or downloaded files could leverage these elevated rights to compromise the operating system. By enforcing non-administrative launches, Chrome adds an additional layer of protection against such vulnerabilities .(TechRadar)
📅 Deployment Timeline
While the exact release date for this feature has not been announced, it is expected to roll out to Chrome users on Windows later this year. In the meantime, users are advised to avoid running Chrome with administrator privileges to maintain optimal security .(BleepingComputer, ITdaily.)
🖼️ Visual Overview
Image Source: BleepingComputer
This proactive measure by Microsoft and Google underscores a continued commitment to enhancing user security and minimizing potential attack vectors in widely used applications like Chrome.
