16 Billion Passwords Leaked, VIDA Invites Indonesia to Switch to Passwordless Authentication

Illustration (photo: Unsplash)

JAKARTA - Recently, the public was shocked by a Cybernews report that mentioned the leak of 16 billion passwords. Although not the latest incident, digital identity solution provider VIDA considers this phenomenon to be a reminder of the importance of protecting personal data.

According to VIDA, the unwise use of passwords has contributed to the increasing intensity of digital fraud attacks, such as phishing and social engineering.

In fact, VIDA data reveals the fact that 64% of people still recycle passwords, and 80% of data leaks start from weak, reused, or stolen passwords.

Seeing this data, VIDA encourages the public to be more vigilant in maintaining digital security, starting from choosing and managing the right password. Use a combination of uppercase letters, lowercase letters, numbers, and symbols with a minimum length of 24 characters, change them every 90 days, and avoid using the same password on various accounts.

In addition, the public can also use an additional layer of protection that can be strengthened by activating two-factor authentication (2FA) on applications and devices.

VIDA itself already has VIDA FaceToken, a biometric-based technology that combines face matching, liveness detection, and device authentication in one secure and seamless process.

This technology ensures that only genuine users can access accounts or make transactions, and provides protection.

Then, unlike passwords that are vulnerable to phishing, FaceToken does not require codes or information that is easily intercepted, making it more resistant to manipulation such as social engineering.

It doesn't stop there, VIDA also presents VIDA PhoneToken, a device-based authentication technology that utilizes Public Key Infrastructure (PKI) to ensure the authenticity of digital transactions.

Each device is directly linked to the user's identity, ensuring that only registered devices can be used to log in or make transactions.

With this method, the authentication process no longer relies on SMS-based OTPs that are vulnerable to being intercepted through fake BTS or SIM swap fraud.