Google and Microsoft have issued a warning to users about the increasing vulnerability of passwords in protecting their accounts. They are urging users to switch to using passkeys instead. What exactly are passkeys? Passkeys are digital credentials that grant you access to an application or website without the need for entering a username and password. Instead, you can utilize methods like biometrics (such as fingerprint or facial recognition) or a PIN/pattern similar to unlocking your device. By using passkeys, you eliminate the risk of attackers gaining entry with stolen passwords or two-factor authentication codes. This makes passkeys phishing-resistant and enhances your account security. As online threats continue to evolve, maintaining robust security measures is crucial.
Leading American identity and access management (IAM) company Okta has highlighted the use of AI tools by threat actors to create deceptive phishing sites. These sites mimic legitimate sign-in pages using AI-powered platforms like vO and Vercel's v0.dev. This innovative approach enables threat actors to produce convincing phishing pages quickly and evade traditional warning signs like spelling errors. Even two-factor authentication may not provide foolproof protection against these advanced phishing techniques. The most effective defense is to implement passkeys where possible and minimize the reliance on passwords. For accounts where passwords are necessary, ensure they are unique, complex, and supplemented with non-SMS 2FA for added security.
Grab Surfshark VPN now at more than 50% off and with 3 extra months for free!
Secure your connection now at a bargain price!
We may earn a commission if you make a purchase
