Microsoft announced today that it intends to let users remove the codes access from their accounts.
In a change that will take place in the coming weeks, Microsoft said that users will be able to remove the password from their account and choose an alternative authentication option, such as:
- Security keys
- Disposable codes sent by email or SMS
- Biometric data from Windows Hello
- or through the Microsoft Authenticator mobile app.
Today's news comes after Microsoft piloted this new setting (from March 2021), when it allowed Azure users not to use passwords for other more secure alternatives.
Prior to the tests (from March until today), the feature was requested many times by Microsoft business customers.
System administrators and engineers security ζητούσαν έναν τρόπο από την εταιρεία για να προστατεύσουν τους λογαριασμούς από επιθέσεις brute-force password-guessing, οι οποίες είναι πλέον πολύ συνηθισμένες. Να υπενθυμίσουμε ότι αυτή τη στιγμή κυκλοφορούν ελεύθερα στο διαδίκτυο δισεκατομμύρια διαπιστευτήρια χρηστών.
In a blog post announcing the upcoming movement Microsoft's Vasu Jakkal, Corporate Vice President of Microsoft Security, Compliance, Identity and Management, said the company currently records 579 password attacks every second, and a total of 18 billion per year.
"One of our recent surveys found that 15% of people use their pet names as a inspiration for a password," said Jakkal.
“Other codes include family names and important dates such as birthdays. One in 10 people admitted to reusing passwords on websites and 40% said they use a password type like Fall2021, which becomes Winter2021 or even Spring2022.”
