Xbox

Microsoft Edge gets tons of security features, including AI model that can see your screen

bekir June 29, 2026 3 min read 14 views

While Microsoft Edge may not top the browser charts, it enjoys a steady stream of updates that occasionally unveil unexpected features or retire less popular ones. Microsoft has now unveiled a suite of fresh security upgrades for Edge for Business, the version favored by corporate users.

Edge for Business embeds security directly into its core, seamlessly tying into Microsoft’s Defender and Purview ecosystems. By default, sessions on managed devices are automatically governed, and even on unmanaged hardware, dedicated work profiles enforce the same protective controls.

Analysis: Industry analysts note that by integrating AI governance directly into the browser, Microsoft is positioning Edge as a secure gateway for enterprise AI adoption, potentially accelerating the shift toward cloud‑centric productivity while mitigating data‑exfiltration risks.

Microsoft also tightens DLP for contractors. When a contractor’s device is joined to Entra ID through a work profile issued by their client, yet managed by their own employer, the system can prevent local downloads. Files are instead stored in the contractor’s OneDrive, keeping them out of the local filesystem.

Edge introduces a robust security measure that blocks copy‑paste operations from unmanaged sources and applications. With finely tuned DLP settings, administrators can prevent screenshots or file downloads from specified locations. Additionally, IT teams can restrict the installation of extensions, hosted apps, themes, and scripts, and decide whether users may add extensions from external sites. They can also whitelist particular extensions and allow users to request access on an individual basis.

Edge for Business now incorporates an on‑device AI model that employs computer vision to monitor the screen in real time and instantly block malicious content. Unlike reputation‑based systems, this solution observes what is actually displayed, effectively countering screen‑takeover attacks and scareware. Because the AI runs locally, it consumes system resources, so the feature is enabled by default only on machines with at least 2 GB of RAM and four CPU cores. Further details are available in the Microsoft Mechanics video.

❓ Frequently Asked Questions (FAQ)

What new security features does Microsoft Edge for Business now include?

Microsoft Edge for Business now embeds security directly into its core, automatically governing sessions on managed devices and enforcing protective controls on unmanaged hardware through dedicated work profiles. It integrates with Microsoft Defender and Purview, adds AI governance to help secure enterprise AI use, tightens data‑loss prevention (DLP) for contractors, blocks copy‑paste from unmanaged sources, and allows administrators to restrict extensions, hosted apps, themes, and other add‑ons.

How does Edge for Business protect contractor devices and prevent data exfiltration?

When a contractor’s device is joined to Entra ID via a work profile issued by their client but managed by their own employer, Edge for Business can prevent local downloads. Files are instead stored in the contractor’s OneDrive, keeping them out of the local filesystem. This ensures that sensitive data remains within the controlled cloud environment and reduces the risk of data exfiltration.

Can administrators control extensions and copy‑paste in Edge for Business?

Yes. IT teams can restrict the installation of extensions, hosted apps, themes, and other add‑ons. They can also configure DLP settings to block copy‑paste operations from unmanaged sources, prevent screenshots, and restrict file downloads from specified locations, giving administrators granular control over the browser’s security posture.

News Source: Neowin

Community

Comments

Be the first to comment.

Leave a Comment

Your email address will not be published. Required fields are marked *