Exploit kits: fall 2018 review October 24, 2018 https://blog.malwarebytes.com/threat-analysis/2018/10/exploit-kits-fall-2018-review/
It's funny to see that browsers like Chrome, Opera, and Firefox are not targeted anymore, so exploits are becoming a thing of the past. I do wonder why Malwarebytes thinks that Edge will soon also be attacked, I doubt it. Browsers nowadays are much more secure, but don't get me wrong I would still advice to use AE, just in case.
Yes they still have vulnerabilities, but apparently they are harder to exploit because of sandboxing. Perhaps hackers can still get malware up and running but if they are running restricted than what's the point?