Tech companies push for stronger password protection amidst increasing cybersecurity concerns
In today's digital age, cybersecurity is a paramount concern, and a cybersecurity expert, Benoit Grunemwald from Eset, has warned that smartphones and devices will be the primary targets in future cyberattacks. One of the key reasons for this vulnerability is the widespread use of weak passwords and the unfortunate habit of reusing them across different online services.
Sophisticated attackers can crack a password of eight characters or fewer within minutes or even seconds, making password security a significant concern. To address this issue, tech giants like Google, Microsoft, Apple, Amazon, and TikTok are making significant strides toward password-free login methods.
This shift is driven by a combined focus on enhanced security and improved user experience. Google, Microsoft, Apple, and Amazon are actively implementing and promoting passwordless authentication based on FIDO standards and passkeys. For instance, Microsoft’s Authenticator app supports passwordless login, though a full transition remains gradual due to legacy system constraints.
Apple has advanced platform authenticators such as Face ID and Touch ID, which integrate tightly with passkeys synchronized across Apple devices, making passwordless login seamless within their ecosystem. Security key vendors like Yubico and Feitian provide roaming authenticators (hardware tokens) compliant with FIDO2, adopted by many organizations for passwordless access, including large enterprises.
Many organizations, including large enterprises, are accelerating adoption. Gartner predicts that by 2025, over 60% of large enterprises will have implemented passwordless authentication for employees. TikTok and other social platforms are increasingly enabling passwordless options through the adoption of standards such as passwordless MFA or biometric logins, though specific company announcements remain less publicized compared to big tech platforms.
Sophos, Microsoft, and others report growing passkey adoption. For instance, Sophos noted over 20% of authentications now use passkeys after launching support in late 2024, moving away from legacy MFA methods like SMS. The security benefits are substantial, with passwordless methods reducing phishing and password-related breaches significantly. European banks adopting biometrics and FIDO authentication report 40% fewer breaches and 60% faster logins.
However, challenges remain. Legacy systems and organizational inertia slow universal adoption. The human factor will continue to play a crucial role in computer security, according to Benoit Grunemwald from Eset. Setting up passkeys requires a device, and restoring them can be more complicated than resetting a forgotten password. Ultimately, the responsibility for device security will fall on the user.
Despite these challenges, the progress toward passwordless login via access keys and FIDO-compliant technologies is well underway among major technology companies and enterprises, with rapidly increasing adoption and maturity expected throughout 2025. This progress promises a stronger security posture with reduced user friction across digital platforms.
In the ongoing digital transformation, data-and-cloud-computing giants like Google, Microsoft, Apple, Amazon, and TikTok are striving to improve cybersecurity by adopting password-free login methods, marking a shift towards technology that offers both enhanced security and user experience. To achieve this, these companies are implementing and promoting passwordless authentication based on FIDO standards and passkeys.
In the future, with the increasing adoption of passwordless methods, cybersecurity concerns stemming from weak passwords and their reuse may significantly decrease, thus strengthening the overall cybersecurity landscape in the digital age.
