"In my case, those desperate hackers are wasting their time. They can try every combination of letters, numbers, and symbols in every alphabet known to humanity, even if it takes until the end of the universe, and they will never guess the password for my Microsoft account. Also: What are passkeys really? The simple explanation - for anyone tired of passwords Why am I so confident? Because, long ago, I chose the option to make that account passwordless."
"The only way to access the services connected to my Microsoft account is with a passkey that uses biometrics or a device PIN on my Windows PC or a mobile device I previously set up. If some stranger wants to sign in to my account on a new device, they'll have to convince me to approve that sign-in using a device I own and control. (Sorry, Ivan, I say nyet to unsolicited requests from Russia.)"
Microsoft allows free accounts to use passkeys instead of passwords. Passkeys use device-bound credentials such as biometrics or a device PIN to authenticate users. Passwordless sign-ins are highly phishing-resistant and reduce risk from brute-force and credential-theft attacks. Users must set up multiple sign-in and recovery options before switching to passwordless to avoid lockout. A passkey-first user experience rolled out in early 2025 and is available to free Microsoft accounts. Unauthorized sign-in attempts can originate from many countries, but passkeys require approval on a previously registered device, preventing remote takeover without device access. Entra ID administrator controls may differ.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]