Official Apple alert reveals password trick that is ‘never guessable by hacker’ – and stops you falling for fake sites | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker

AN OFFICIAL Apple memo reveals a clever password trick to log in much more safely.

The iPhone maker has created a clever system that lets you ditch passwords altogether.

Apple has added support for passkeys to iPhones – signalling the end of passwordsCredit: Apple

It’s called Passkeys, and Apple says that it’s “always strong and never guessable by a hacker”.

“It’s linked only with the website or app it was created for,” Apple added.

“Thereby protecting you from getting tricked into using a passkey to sign in to a fraudulent website or app.”

Better still, Passkeys are stored in the iCloud Keychain on your Apple devices, so you can sign in anywhere you’re logged in with an Apple ID.

What’s wrong with passwords?

Passwords have been around for decades and although they can keep your accounts safe, they’re not perfect.

Users can easily forget them, or rely on overly simple phrases that attackers can guess.

And even a strong password could be leaked – allowing your logins to be compromised.

That’s why re-using passwords is a major problem, as it could give hackers access to many of your accounts.

What are Passkeys?

Passkeys are like passwords, but you don’t have to remember them – and they can’t be “simple” or guessable.

The idea is that passkeys are an industry standard to replace passwords.

That’s why usual rivals Google and Apple have teamed up to help get rid of passwords.

An Apple page explains: “Passkeys are a replacement for passwords.

“They are faster to sign in with, easier to use, and much more secure.

“They simplify account registration for apps and websites, are easy to use, and work across all of your Apple devices, and even non-Apple devices within physical proximity.”

Google, which also supports Passkeys, added: “Passkeys are a significantly safer replacement for passwords and other phishable authentication factors.

“They cannot be reused, don’t leak in server breaches, and protect users from phishing attacks.

“Passkeys are built on industry standards and work across different operating systems and browser ecosystems, and can be used for both websites and apps.”

How to use passkeys on iPhone

Instead of signing up (or logging in) to a website using a password, you’ll use a Passkey.

This is a digital key that you don’t have to remember.

And you simply authenticate who you are using your fingerprint (Touch ID) or face (Face ID) on an iPhone or Mac.

It’ll be just as quick to log in, and means you’ll have a login that simply can’t be guessed or leaked.

Your Passkeys are stored on your devices, but will sync across multiple gadgets using Apple’s iCloud Keychain – which already exists to track passwords.

Nobody can read your Passkeys, Apple included.

And it means you can’t be tricked into handing over a password through phishing – because you won’t have any information to hand across.

Make sure you’re updated to the latest version of iOS by going into Settings > General > Software Update.

To turn on passkeys, you’ll need to do the following steps:

  • Go to Settings > Profile > iCloud > Passwords and Keychain
  • Now toggle on Sync this iPhone
  • Enter your passcodes

Once that’s done, you’ll need to wait for an app or website that supports passkeys.

An increasing number do, so always be on the lookout when signing up to a website or changing your password.


Click Here For The Original Story From This Source.

How can I help you?
National Cyber Security