Microsoft is making a big change. The company has announced that passwords will be removed for all users—over 1 billion people. Microsoft says passwords are easy to forget and hackers can guess them. So, it’s time to get rid of them completely.

“The time of passwords is ending,” Microsoft said in December. “Hackers know this, so they are attacking passwords more than ever.” The company blocks 7,000 password attacks every second, almost twice as many as last year. Now, Microsoft wants 1 billion users to switch to passkeys.

A passkey replaces passwords and two-factor authentication (2FA) with a more secure method. It connects your account to a physical device, like your phone or computer, and uses your fingerprint or face to unlock it. Unlike passwords, passkeys cannot be stolen or leaked because they require your actual device. And unlike 2FA, they cannot be intercepted or hacked.

Microsoft is making another step toward replacing passwords with passkeys.

“By the end of April, most people with Microsoft accounts will see a new way to sign in and sign up on websites and mobile apps.”

This change helps Microsoft improve the login process, making it easier and more secure. The new design focuses on using passkeys instead of passwords.

When creating a new account, you only need to enter your email address. “You don’t need to make a new Microsoft password… Just confirm your email with a one-time code, and that becomes your way to log in—no password needed.”

Once signed in, users will create their passkeys. Microsoft is also changing the sign-in system so that passkeys are the first choice whenever possible. This is because passkeys are safer and three times faster than passwords.

Microsoft explains that just adding passkeys is not enough if passwords still exist on the account. Even if over a billion users start using passkeys, the account is still at risk if both a passkey and a password can be used to log in.

That’s why removing passwords is the main goal. This is even more important now, as AI-powered attacks and security breaches are happening more often. Microsoft says, “We want to get rid of passwords completely and only use secure login methods.” Millions of users have already deleted their passwords.

Well done to Microsoft for making its message clear and simple. More people are starting to use passkeys. This week, HYPR said that “phishing-resistant authentication, mainly FIDO passkeys, will likely become the most common login method within two years.” But there is still a lot of work to do.

Now, we need all major platforms to be just as clear about getting rid of passwords. Unlike Microsoft, Google still says passwords can be used as a backup to access accounts. But as Microsoft warns, this creates a security risk. This year should be the year when companies give clear advice on using passkeys and stop relying on passwords and basic two-factor authentication (2FA).

Published: 29th March 2025

For more such articles please follow us on Twitter, Linkedin & Instagram

Also Read:

How to Build a Work-Life Balance That Actually Works
‘Snow White’ drops 53% in second weekend box office
Gailey Shaffi-Griffin, a women’s leadership in Singapore