Which browser is frequently targeted by client-side exploits?

Client-side exploits abuse vulnerabilities in the browser itself and any plugins it may run. Internet Explorer (and the legacy Edge) has historically offered a large attack surface: it shipped with long-standing Windows integration, heavy enterprise deployment, and features like ActiveX that allowed more code to run inside the browser. This combination created many opportunities for attackers, making it a frequent target for client-side exploit kits and drive-by download campaigns. In contrast, modern browser designs emphasize stronger sandboxing and rapid patching, which reduces exploit success rates. Chrome, Firefox, and Safari are still targeted, but their architectures and update practices have generally narrowed the window for successful exploitation, which is why the legacy IE/Edge surface is specifically noted as frequently targeted.