Latest news with #Authenticator
Forbes
21 hours ago
- Forbes
Microsoft's Password Change Is Just Days Away—Act Now
The password era is ending. Quite the week for Microsoft. Just when its drastic u-turn on Windows 10's end of life seemed to be the headline of the week, the Windows-maker suddenly killed its blue screen of death. And now your passwords face that same fate. Microsoft warns 'the password era is ending' and 'bad actors know it, which is why they're desperately accelerating password-related attacks while they still can.' The answer is passkeys, but it also means a huge change to passwords you have saved. The biggest change to Authenticator is that from August 'your saved passwords will no longer be accessible in Authenticator and any generated passwords not saved will be deleted.' You have until August to switch to move those passwords somewhere else. But the most useful part of the Authenticator app is 'securely storing and autofilling passwords on apps and websites you visit on your phone.' And that's changing now. From July — just days away, 'you will not be able to use autofill with Authenticator.' You have the option to move the password problem somewhere else, exporting Authenticator passwords to Google Password Manager or iCloud Keychain or similar. That might be convenient for autofilling, but it doesn't make you any more secure. Instead, replace your passwords with passkeys on all your critical accounts — especially on Microsoft itself, Google, Facebook or similar. The recent 16 billion password 'breach' may have been miseadling, but those stolen passwords are out there. Half of Americans use risky passwords and less than half use two-factor authentication on accounts. You really don't want to be in either of those stats. If you use Microsoft's Authenticator app, don't just roll the problem forwards — act now and fix it. Your Authenticator app 'will continue to support passkeys,' says Microsoft. "If you have set up Passkeys for your Microsoft Account, ensure that Authenticator remains enabled as your Passkey Provider. Disabling Authenticator will disable your passkeys.'
Yahoo
a day ago
- Yahoo
Microsoft Is Getting Rid of Passwords in One Month. Here's What You Need to Do ASAP
If you rely on Microsoft Authenticator to store your passwords, time is winding down. Starting in August, Microsoft will require you to use passkeys instead of keeping all of your Microsoft passwords on its mobile app and your old passwords will vanish. But that's not bad news. Passkeys can cut out risky password habits that 49% of US adults have, according to a recent CNET survey. Making it a practice to use the same password for multiple accounts or include personal hints, like your birthday, can be risky. It could be an easy giveaway for hackers to guess, which can lead to identity theft and fraud. Here's what you need to know about Microsoft's timeline for the switch and how to set up passkeys for your Microsoft accounts before it's too late. Microsoft Authenticator houses your passwords and lets you sign into all of your Microsoft accounts using a PIN, facial recognition such as Windows Hello, or other biometric data, like a fingerprint. Authenticator can be used in other ways, such as verifying you're logging in if you forgot your password, or using two-factor authentication as an extra layer of security for your Microsoft June, Microsoft stopped letting users add passwords to Authenticator, but here's a timeline of other changes you can expect, according to Microsoft. July 2025: You won't be able to use the autofill password function. August 2025: You'll no longer be able to use saved passwords. If you still want to use passwords instead of passkeys, you can store them in Microsoft Edge. However, CNET experts recommend adopting passkeys during this transition. "Passkeys use public key cryptography to authenticate users, rather than relying on users themselves creating their own (often weak or reused) passwords to access their online accounts," said Attila Tomaschek, CNET software senior writer and digital security expert. So what exactly is a passkey? It's a credential created by the Fast Identity Online Alliance that uses biometric data or a PIN to verify your identity and access your account. Think about using your fingerprint or Face ID to log into your account. That's generally safer than using a password that is easy to guess or susceptible to a phishing attack. "Passwords can be cracked, whereas passkeys need both the public and the locally stored private key to authenticate users, which can help mitigate risks like falling victim to phishing and brute-force or credential-stuffing attacks," Tomaschek added. Passkeys aren't stored on servers like passwords. Instead, they're stored only on your personal device. More conveniently, this takes the guesswork out of remembering your passwords and the need for a password manager. Microsoft said in a May 1 blog post that it will automatically detect the best passkey to set up and make that your default sign-in option. "If you have a password and 'one-time code' set up on your account, we'll prompt you to sign in with your one-time code instead of your password. After you're signed in, you'll be prompted to enroll a passkey. Then the next time you sign in, you'll be prompted to sign in with your passkey," according to the blog post. To set up a new passkey, open your Authenticator app on your phone. Tap on your account and select "Set up a passkey." You'll be prompted to log in with your existing credentials. After you're logged in, you can set up the passkey.
Scottish Sun
18-06-2025
- Scottish Sun
Billions of passwords to be deleted in WEEKS blocking you from logging in unless you move to new app, Microsoft warns
The tech giant has warned users don't have long to act PASS PANIC Billions of passwords to be deleted in WEEKS blocking you from logging in unless you move to new app, Microsoft warns Click to share on X/Twitter (Opens in new window) Click to share on Facebook (Opens in new window) MICROSOFT has warned that billions of passwords are to be deleted within weeks to protect users from the threat of cyberattacks. With the change imminent, Microsoft has issued advice to users to ensure they are not blocked from logging into their accounts. Sign up for Scottish Sun newsletter Sign up 4 Microsoft logo outside of its head office in France Credit: Getty Why are your passwords being deleted? Microsoft has said that passwords saved in its Authenticator app will be deleted in just six weeks times. Instead of using passwords, the company are hoping this decision will encourage more users to embrace passkeys. But why is this happening? The Bill Gates co-founded company explained: 'The password era is ending." And while this may be a surprise to some, consumer technologies publication CNET revealed it is a necessary change as half of all US adults have "risky password habits". These habits include reusing and sharing passwords or choosing easily guessable passwords. What's more, passwords are inherently vulnerable to attacks and phishing. Users and organisations are all at risk and should heed the advice, as earlier this year, consumers were affected by the cyberattacks on well-known brands against M&S, Harrods and Co-op. Furthermore, six government agencies were hit by 15million cyber attacks in 2024, amounting to around 40,000 threats a day. 4 Cyber attacks have been on the rise in the UK Credit: Getty According to Microsoft, cyber attackers are aware that users are moving away from relying on passwords for security, which is why they're accelerating password-related attacks while they still can. The organisation said: 'Passkeys not only offer an improved user experience by letting you sign in faster, they aren't susceptible to the same kinds of attacks as passwords.' Passkeys are a passwordless sign-in method, tied to the user's account to make accessing a website or application more secure and easier. Users can use passkeys to authenticate themselves without having to enter a username or password, and there is no need for any additional authentication factor. 4 Passkeys are the safest way to secure data Credit: Getty Microsoft is not alone in encouraging users to find new ways to protect their privacy. Google has also issued similar warnings, but has yet to implement such a forcible method to aid customer data protection. And yet, for some, this change to passkeys will be daunting, especially after Google shared that more than half of their users still do not use the now-outdated two-factor authentication (2FA). When does it come into affect? Some users may have already noticed a difference in their experience, as some changes have already come into effect. June 2025 - Users will no longer be able to save new passwords in Authenticator. During July 2025, users will not be able to use autofill with Authenticator. From August 2025, saved passwords will no longer be accessible in Authenticator. Users need to act to avoid losing access to accounts and applications. What should you do now? 4 Microsoft Edge is the new recommended way of saving passwords if necessary Credit: Getty The tech giant has incorporated a "Turn on Edge" button in Authenticator, which, when pressed, will securely sync all saved passwords and addresses to a users Microsoft account which can be accessed via Edge. By doing so, users can continue to access their accounts and use functions like autofill. While Microsoft explained that users could move their passwords to Microsoft Edge, they suggested that this is the perfect prompt to convert all passwords to passkeys.
The Irish Sun
18-06-2025
- The Irish Sun
Billions of passwords to be deleted in WEEKS blocking you from logging in unless you move to new app, Microsoft warns
MICROSOFT has warned that billions of passwords are to be deleted within weeks to protect users from the threat of cyberattacks. With the change imminent, 4 Microsoft logo outside of its head office in France Credit: Getty Why are your passwords being deleted? Microsoft has said that passwords saved in its Authenticator app will be deleted in just six weeks times. Instead of using passwords, the company are hoping this decision will encourage more users to embrace passkeys. But why is this happening? The Bill Gates co-founded company explained: 'The password era is ending." READ MORE Cyberattacks And while this may be a surprise to some, consumer technologies publication These habits include reusing and sharing passwords or choosing easily guessable passwords. What's more, passwords are inherently vulnerable to attacks and phishing. Users and organisations are all at risk and should heed the advice, as earlier this year, consumers were affected by the Most read in Tech Furthermore, 4 Cyber attacks have been on the rise in the UK Credit: Getty According to Microsoft, cyber attackers are aware that users are moving away from relying on passwords for security, which is why they're accelerating password-related attacks while they still can. The organisation said: 'Passkeys not only offer an improved user experience by letting you sign in faster, they aren't susceptible to the same kinds of attacks as passwords.' Passkeys are a passwordless sign-in method, tied to the user's account to make accessing a website or application more secure and easier. Users can use passkeys to authenticate themselves without having to enter a username or password, and there is no need for any additional authentication factor. 4 Passkeys are the safest way to secure data Credit: Getty Microsoft is not alone in encouraging users to find new ways to protect their privacy. And yet, for some, this change to passkeys will be daunting, especially after Google shared that more than half of their users still do not use the now-outdated two-factor authentication (2FA). When does it come into affect? Some users may have already noticed a difference in their experience, as some changes have already come into effect. June 2025 - Users will no longer be able to save new passwords in Authenticator. During July 2025, users will not be able to use autofill with Authenticator. From August 2025, saved passwords will no longer be accessible in Authenticator. Users need to act to avoid losing access to accounts and applications. What should you do now? 4 Microsoft Edge is the new recommended way of saving passwords if necessary Credit: Getty The tech giant has incorporated a "Turn on Edge" button in Authenticator, which, when pressed, will securely sync all saved passwords and addresses to a users Microsoft account which can be accessed via Edge. By doing so, users can continue to access their accounts and use functions like autofill. While Microsoft explained that users could move their passwords to Microsoft Edge, they suggested that this is the perfect prompt to convert all passwords to passkeys.
The Sun
18-06-2025
- The Sun
Billions of passwords to be deleted in WEEKS blocking you from logging in unless you move to new app, Microsoft warns
MICROSOFT has warned that billions of passwords are to be deleted within weeks to protect users from the threat of cyberattacks. With the change imminent, Microsoft has issued advice to users to ensure they are not blocked from logging into their accounts. 4 Why are your passwords being deleted? Microsoft has said that passwords saved in its Authenticator app will be deleted in just six weeks times. Instead of using passwords, the company are hoping this decision will encourage more users to embrace passkeys. But why is this happening? The Bill Gates co-founded company explained: 'The password era is ending." And while this may be a surprise to some, consumer technologies publication CNET revealed it is a necessary change as half of all US adults have "risky password habits". These habits include reusing and sharing passwords or choosing easily guessable passwords. What's more, passwords are inherently vulnerable to attacks and phishing. cyberattacks on well-known brands against M&S, Harrods and Co-op. Furthermore, six government agencies were hit by 15million cyber attacks in 2024, amounting to around 40,000 threats a day. 4 According to Microsoft, cyber attackers are aware that users are moving away from relying on passwords for security, which is why they're accelerating password-related attacks while they still can. The organisation said: 'Passkeys not only offer an improved user experience by letting you sign in faster, they aren't susceptible to the same kinds of attacks as passwords.' Passkeys are a passwordless sign-in method, tied to the user's account to make accessing a website or application more secure and easier. Users can use passkeys to authenticate themselves without having to enter a username or password, and there is no need for any additional authentication factor. 4 Microsoft is not alone in encouraging users to find new ways to protect their privacy. Google has also issued similar warnings, but has yet to implement such a forcible method to aid customer data protection. And yet, for some, this change to passkeys will be daunting, especially after Google shared that more than half of their users still do not use the now-outdated two-factor authentication (2FA). When does it come into affect? Some users may have already noticed a difference in their experience, as some changes have already come into effect. June 2025 - Users will no longer be able to save new passwords in Authenticator. During July 2025, users will not be able to use autofill with Authenticator. From August 2025, saved passwords will no longer be accessible in Authenticator. Users need to act to avoid losing access to accounts and applications. What should you do now? 4 The tech giant has incorporated a "Turn on Edge" button in Authenticator, which, when pressed, will securely sync all saved passwords and addresses to a users Microsoft account which can be accessed via Edge. By doing so, users can continue to access their accounts and use functions like autofill. While Microsoft explained that users could move their passwords to Microsoft Edge, they suggested that this is the perfect prompt to convert all passwords to passkeys.
