The digital world is transitioning from passwords to passkeys, with Apple, Google, and Microsoft at the forefront. The recent findings of a cybersecurity firm report published in Forbes also substantiate the dire need for security upgradation through passkeys or other authentication methods. The report finds that an alarming number of 19 billion compromised passwords were leaked in 200 security breaches in the last year. These passwords are being sold on the dark web and criminal forums for anyone who wants them. 

Cybernews Revelations that will Make you Change Your Password Immediately 

Cybernews analysed the 19 billion passwords being compromised and put on sale. The findings indicate that most of the passwords were easy to crack due to weak security protocols and the use of simple, easily guessable passwords. This alarming situation compels global digital app users to pause and ask a concerning question: Could their social media, banking, or other digital accounts be among those exposed to cyber criminals?

The probability of a ‘yes’ is huge. Cybernews found that 94% of the passwords are either reused or duplicated. Meanwhile, simple numbers like 123456 are the most frequently used passwords globally. As it is a common practice to use easy passwords for memory, this critical situation requires global users to transition their accounts from passwords to passkeys or other authentication modes for data security. 

Credential Manager

The utmost requirement for digital platform users right now is to learn about Credential Manager to personalize their security. Credential Manager uses the Data Protection API, a cryptography system only accessible to users. It allows users to manage their passwords and personal data for signing in to multiple accounts, websites, and networks. It is available for Windows and Android. 

In Windows, credentials are saved in a special folder, ‘Vaults’. Managing these credentials is just a two-step process, and it can save users from a lot of hassle created after a data breach.  Similarly, Android users can also look up their Credential Managers and boost their data security with unified API support. 

Notably, every tech company offers its own customized Credential Manager like, Microsoft, Apple, and Google. Users can learn about creating and managing these accounts through their official websites. Other than these tech giants, some other top Credential Managers are 1Password, Bitwarden, and Dashlane. 

Shared Passwords 

The worst a user can do to their data is to use the same password for multiple platforms. Although it is a common practice, it is venomous. A hacker gaining access to one account can easily enter all other accounts. According to Neringa Macijauskaitė, an information security researcher at Cybernews 

“If you reuse passwords across multiple platforms, a breach in one system can compromise the security of other accounts, creating a domino effect.”

Considering the high potential risk of cyberattackers not limiting their attack to one platform or account, it is advisable to use different passwords for different platforms. Just changing a number, character, or special key is not a viable solution. 

Additionally, as major digital platforms like Google and Apple are offering passkeys, it is the best time to enter the passkeys era. 

Recently, Microsoft deleted the passwords of over 1 billion users as the tech giant is looking to upgrade its security standards and protect its users from hackers. The company is encouraging its users to experience a passkey-first experience. 

Roaming Authenticator 

Another way to protect social media or other accounts from malware or hackers is to use roaming authenticators. They allow users to authenticate from a secondary device about their valid credentials. By downloading authenticators, users can protect their data from potential cyberattacks. Yubico is a popular roaming authenticator that firms and large enterprises can use to secure their data. 

Multi-factor Authentication 

Considering the encryption standard followed by emails, it is a viable solution to use multi-factor authentication to protect accounts. SMS is usually not encrypted, and emails are encrypted from sender to receiver; therefore, by adding a layer of authentication, digital accounts could be guarded from cyberattacks. 

This multi-factor authentication is not only suitable for personal accounts but also big corporations like banks, e-commerce, and software houses. 

Is it the End of the Password Era? 

The revelations by Cybernews have shaken common digital platform users and large enterprises alike. It is concerning for billions of digital platform users as passwords cannot protect their data anymore. However, it is too early to say that it is the end of the password era. It will take time, but as early as users shift to passkeys, it is best for them.