Passkey Redaction Attacks Subvert GitHub, Microsoft Authentication
July 2, 2024 at 06:08PM Many online accounts using passkey technology are still vulnerable to adversary-in-the-middle (AitM) attacks, allowing attackers to manipulate the login screen and remove passkey authentication. This discovery by security researcher Joe Stewart highlights the need for more secure authentication methods and account recovery options. Enterprises can mitigate this risk by implementing … Read more