Microsoft is forced to restrict access to Internet Explorer mode in the Edge browser following targeted attacks exploiting zero-days in that mode.
Hackers are targeting the ‘Internet Explorer’ mode in Edge and using vulnerabilities to break into systems. In response, Microsoft has restricted access to the mode.
IE mode in Edge continues to exist to maintain compatibility between legacy websites and applications with modern browsers. This is important for legacy applications within companies, older systems, or portals that still use technologies like ActiveX. However, this mode also introduces risks because the underlying technology lacks the modern security architecture of, for example, Chromium.
In August 2025, Microsoft’s security team received reports of active attacks through this mode. Attackers used social engineering and exploited a zero-day vulnerability in Internet’s Chakra JavaScript engine. Victims were lured to fake websites and prompted to reload the page in IE mode. Once activated, attackers executed code on the system through this environment and gained full control over the device.
Restricted Access
In response, Microsoft has removed broad access to IE mode for regular users. The toolbar shortcut, context menu option, and settings menu entry have been removed. Organizations can still activate the mode through group policy or enterprise settings, but individual Edge users can no longer easily activate IE mode themselves (or be persuaded to do so).
Private users can still activate the mode through a multi-step process in settings. They must manually specify which websites are allowed to open in IE mode. The intention is to make the use of the mode more conscious and less accessible.
Outdated and Unsupported
Microsoft emphasizes that Internet Explorer 11 has not been officially supported since June 2022, except for critical security updates within Edge. The company advises users to switch to modern web technologies as soon as possible for better security, reliability, and performance.