Are We Approaching the End of Weak Passwords?

Tech
By 24matins.uk published 13 August 2025 at 14h22, updated on 13 August 2025 at 14h22.
Tech

With cyber threats on the rise and traditional passwords often proving vulnerable, the tech industry is seeking more secure alternatives. Innovations like biometrics and passkeys are gaining traction, signaling a shift in how we protect our digital identities.

Tl;dr

  • Password use persists despite new security solutions.
  • Massive database leaks highlight password weaknesses.
  • Transition to passkeys faces challenges for many users.

    • Tech Giants Challenge the Endurance of Passwords

    Even as Microsoft and fellow industry leaders announce the « end of the password era », millions of internet users remain loyal to this familiar method of identification. The landscape is shifting, but inertia is powerful: daily habits, a sense of control, or perhaps simple convenience keep people returning to what they know. Nevertheless, the traditional password stands at a crossroads as technology giants intensify their efforts to push for more secure alternatives.

    The Stark Reality of Password Vulnerabilities

    Recent research by Cybernews brings the situation into sharp focus, revealing a staggering database containing nearly 16 billion compromised credentials. According to Benoît Grünemwald from Eset, passwords often fall short in complexity and uniqueness—a dangerous combination. He stresses, « Passwords under eight characters can be cracked in minutes—sometimes even seconds. » When such weak credentials are coupled with poor storage practices on various platforms, the scale of risk grows exponentially.

    Some institutions are beginning to react. For example, France’s tax authority recently added an extra layer to its login process by requiring users to enter a code sent via email at each connection—a move reflecting growing awareness of cyber threats.

    A United Front: Pushing Passkey Adoption

    Recognizing the urgent need for change, major players have coordinated through the FIDO (Fast Identity Online Alliance). This alliance—including names like Google, Apple, Amazon, and now even TikTok—champions digital passkeys over passwords. Passkeys work by linking authentication to another device—usually a smartphone—using a PIN or biometric data. As Troy Hunt, founder of Haveibeenpwned, puts it, « With passkeys, it’s impossible to accidentally give away your credentials to a fraudulent site. » The argument is persuasive; yet large portions of the web are slow—or reluctant—to follow suit.

    Still, migration is anything but straightforward for everyday users. Despite mounting warnings and industry pressure, many websites cling stubbornly to single-password authentication. Passkey adoption can be confusing at first; setting up new devices or recovering access after losing one remains daunting for many. As Hunt notes with some realism: « The password has this universal advantage: everyone knows how to use it. »

    To help ease this shift towards stronger security, experts suggest several key habits:

  • Protect all devices—especially smartphones—that handle authentication.
  • Gradually acclimate yourself to new identification methods.
  • Stay alert as cyber risks evolve rapidly.

    • Clearly, while change seems inevitable, most will experience it not as an abrupt revolution but rather a gradual—and sometimes bumpy—evolution in digital security habits.