JAKARTA - Currently, passkeys are the best data security methods of cyber threats. Several tech giants, including Google, have announced that the password key is their default entry method.
An institution called the FIDO Alliance, which includes tech giants such as Microsoft, Google, PayPal, and Samsung saying that login methods using password keys such as fingerprints, face scans, or screen keys of your device, such as PIN, are the strongest protection against threats such as phishing.
However, according to Igor Kuznetsov, Director, Global Research and Analysis Team (Global Research and Analysis Team GREAT) at Kaspersky, it is important for users to realize that certain risks still exist.
Igor himself agrees that the password does offer strong protection against phishing attempts. However, despite these facts, he highlighted that there is still vulnerability to its users.
"If the device used to log in (whether a computer or cellphone) is compromised, cybercriminals can use social engineering to trick users into logging into fake applications or stealing data after logging in is successful," Igor explained in a statement received, quoted on Sunday, October 15.
SEE ALSO:
In addition, it should be noted that, by default, passwords are synchronized with cloud provider services, such as Google or Apple, both are members of the FIDO alliance.
"If the provider account is compromised (for example a Google account or Apple ID), the security of the password key will become vulnerable," added Igor further.
To that end, Kaspersky recommends completing the use of password keys with the best traditional security practices. This includes applying strong cybersecurity solutions to your device.
"Updating the software regularly, and be careful when finding suspicious resources, emails, or calls," he said.
The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)