- New Microsoft accounts will default to passkeys instead of passwords
- Users can manage passkeys via Windows Hello, face or fingerprint recognition
What happened
Microsoft has announced that all newly created consumer accounts will default to using passkeys, a passwordless authentication method that relies on biometric data or device-based credentials. Passkeys, which use cryptographic pairs stored locally on devices, allow users to sign in with facial recognition, fingerprints, or a device PIN—eliminating the need for traditional passwords.
Microsoft says nearly one million passkeys are created daily by users, signalling widespread adoption. The move aligns with industry-wide efforts led by the FIDO Alliance and supported by companies like Apple and Google to reduce reliance on insecure password-based systems.
Why it’s important
This change marks a significant push toward a more secure internet. Passwords are widely recognised as one of the weakest links in cybersecurity, often reused and vulnerable to phishing or brute-force attacks. By transitioning users to passkeys, Microsoft is reducing risk and improving the user experience.
The adoption of passkeys also reflects a broader movement across the tech industry to standardise secure login practices. For consumers, the shift means fewer forgotten passwords and a more seamless authentication process. For IT departments and developers, it signals the need to support new protocols and user flows. As one of the world’s largest tech providers, Microsoft’s move is likely to accelerate industry-wide adoption of passwordless systems.
