Internet Explorer on Windows Phone 8.1 has a bit of a security flaw. The flaw has to do with the way IE treats passwords. Normally, when you enter a password the OS replaces your entry with asterisks. For example, entering a password of "abc123" will result in "******." Several users on Reddit have been discussing a situation where IE on Windows Phone will allow you to search for the password, and thus reveal the password.
To try this, type a password into a password field on a webpage. You should see the asterisks. Select the password you entered, then search using Bing or Cortana. The OS will reveal the password to you.
Some say this flaw is serious, while others say asterisks replacing your password simply makes you feel better. It does nothing to hide the password from the OS and only masks it in case someone is looking over your shoulder.
What do you think? Is this a serious security issue? Should Microsoft patch this bug? Let me know in the comments.
To try this, type a password into a password field on a webpage. You should see the asterisks. Select the password you entered, then search using Bing or Cortana. The OS will reveal the password to you.
Some say this flaw is serious, while others say asterisks replacing your password simply makes you feel better. It does nothing to hide the password from the OS and only masks it in case someone is looking over your shoulder.
What do you think? Is this a serious security issue? Should Microsoft patch this bug? Let me know in the comments.