this post was submitted on 02 May 2025
12 points (92.9% liked)

Microsoft

443 readers
1 users here now

Welcome to the Microsoft community! This is a place to discuss everything related to Microsoft, including products, services, features, and discussions (e.g., Windows, Surface, 365).

General discussions about Microsoft products, updates, tips, and related topics are welcome. However, for specific technical support, account-related inquiries, advertising questions, and other issues, please direct them to official Microsoft support channels.

Rules

  1. Stay on topic: All posts should be related to Microsoft products, services, or the Microsoft ecosystem.

  2. Respectful discussions: Treat fellow community members with respect and engage in constructive discussions. Avoid personal attacks, harassment, or offensive language.

  3. No support inquiries: Please refrain from posting individual support inquiries or account-related issues. Use official Microsoft support channels for assistance.

  4. No spam or self-promotion: Do not post spam or self-promotional content. This includes links to personal websites, blogs, or products/services.

  5. No illegal content: Do not share or discuss illegal content, including piracy, hacking, or copyright infringement.

  6. No misleading information: Avoid spreading false or misleading information about Microsoft or its products.

  7. No inappropriate content: Do not post or link to any inappropriate or NSFW (Not Safe for Work) content.

  8. No off-topic discussions: Keep the discussions focused on Microsoft products, services, and related topics. Avoid unrelated or off-topic discussions.

  9. No excessive self-promotion: Do not promote products, services, or websites.

founded 2 years ago
MODERATORS
ijeff@lemdro.id
12
Microsoft goes passwordless by default on new accounts (www.theverge.com)
submitted 1 week ago by neme@lemm.ee to c/microsoft@lemdro.id
3 comments fedilink hide all child comments
top 3 comments
sorted by: hot top controversial new old
[–] Delta_V@lemmy.world 6 points 1 week ago* (last edited 1 week ago) (1 children)

What's the motive here? Make it easier for security services to hack into our stuff?

The claim that this will enhance security does not seem credible.

Instead of an arbitrarily long password that would take a supercomputer longer than the age of the universe to crack, users will be limited to a 4 digit pin + publicly accessible biometric data with no expectation of that biometric data being private or secret.

I hope I'm misunderstanding the implications, because it seems like Microsoft isn't getting rid of passwords so much as limiting password length to 4 digits.

[–] Nawor3565@lemmy.blahaj.zone 2 points 1 week ago (1 children)

The problem is that brute-forcing passwords hasn't been a thing for ages. It's all about phishing and social engineering now, something passwords can't protect against. It doesn't seem like they're pushing for pins as much as passkeys, which I much prefer using over other bandaid fixes like SMS 2FA (well, now that Firefox for Android properly supports using passkeys from Bitwarden. Before they fixed that, they were really obnoxious to use).

[–] corsicanguppy@lemmy.ca 2 points 1 week ago

SMS 2FA hasn't been valid MFA for a decade. It's junk and I wish organizations were ridiculed into improving.