Google and Microsoft have recently encouraged people to stop using traditional passwords and replace them with passkeyes.
Passkey is a digital authentication that allows you to access an application or website without entering a username and password.
Instead of using a password, passkey uses authentication methods such as biometrics (fingerprints, face), pin code or security key to verify the user's identity.
Passkey is becoming increasingly necessary in the current period, when cyber fraud and attack are increasingly sophisticated due to the development of GenAI (the birthplace of artificial intelligence).
leading US identity and access management (IAM) company Okta said it has seen attackers threatening to use vO, an AI tool, to develop fraudulent websites impersonating legitimate login websites.
Okta said threat actors can now use AI to create a functional scam website from a simple text reminder.
According to Okta experts, scammers are actively testing and using top GenAI tools to rationalize and enhance their fraud capabilities. Some famous brands such as Microsoft 365 and some cryptocurrency companies are also being made fake, sophisticated and unrecognizable websites by these people.
According to cybersecurity experts, with increasing threats from cybercrime, even the use of two-factor authentication (2FA) is unlikely to keep your account safe.
The best way is to use passkey - a method with the advantage of being stored on the user's device, not being stolen from the server, safe and easy to use.
In case you are required to use a password on a certain account, create a unique, long password, backed up by 2FA, not SMS.