Microsoft Goes Passwordless by Default to Boost Account Security
Bleeping Computer
|
Contributed by: Drex DeFord
Summary
Microsoft is transitioning to a "passwordless by default" strategy for all new accounts to improve security against phishing and other common cyber threats. This initiative follows enhancements to sign-in experiences on web and mobile platforms, prioritizing passwordless and passkey authentication methods. Users will have various options to access their accounts without a password, and existing users can delete their passwords if they choose. Microsoft encourages the use of passkeys that leverage biometric authentication, and reports a 20% reduction in password usage during their trials, aiming for further declines in traditional password reliance as adoption increases.