Investigate if you've been impacted by the issue at hand
In the ever-evolving digital landscape, a new contender is emerging to revolutionise the way we secure our online accounts - passkeys.
Passkeys, unlike traditional passwords, are cryptographic keys that enable passwordless login. They cannot be easily captured, stolen, or guessed, making them a formidable barrier against cybercriminals. This innovative method is gaining traction, with organisations like the Federal Office for Information Security (BSI) recommending their use.
However, the convenience of passkeys doesn't come at the expense of security. They can be stored in a compatible password manager, a universal and independent solution that ensures your digital safety. Alternatively, a password notebook, as explained by the BSI on its website, can be used for added safety online.
Recently, a concerning report surfaced about a criminal claiming to have obtained around 16 million PayPal login credentials, including plaintext passwords. While the authenticity of this claim is questionable, according to Dirk Knop from the "Heise" service department, it serves as a reminder of the importance of maintaining strong online security practices.
Consumers who fear that their login credentials may have been compromised are advised to check if their email address appears in the data collection at Have I Been Pwned. Additionally, it is worthwhile to proactively perform this check regularly and change possibly compromised passwords.
The Scientific Computing Center (SCC) at the Karlsruhe Institute of Technology (KIT) has developed a password management system with passkey functionality. This system, available since August 2025 for all KIT accounts, enhances security and convenience by linking personal devices with accounts, allowing authentication via fingerprint, face recognition, or PIN.
It's essential to remember that a password once given should not be used again for one or more other services. Passkeys, being automatically generated, cannot be forgotten or too weak. They also provide an alternative to storing passkeys on a security USB stick (FIDO2).
If suspicious activities are discovered in one's account, immediate action should be taken. Contacting PayPal is crucial, and checking transactions on the website can be helpful. If a search yields one or more hits, those affected should change their password with the respective service.
In case of a suspected data breach, it's also advisable to file a report with the local police or the web watch of one's respective federal state. Saving account statements and taking screenshots can be useful for this purpose.
As we move towards a passwordless future, passkeys are set to play a significant role. Their ability to enhance security while simplifying the login process makes them an attractive solution for both individuals and organisations. However, it's crucial to remain vigilant and practise good online security habits to ensure a smooth transition into this new era.
Read also:
- Catastrophic blast at a US Steel facility in Pennsylvania causes 2 fatalities, inflicts injuries on 10 individuals
- Weekly developments in the German federal parliament, the Bundestag
- Solar Shutdown: Merz Proposes Billions of Gas Discharge - Reverse Plan
- New guidelines for NEPA processes unveiled by federal agencies, in alignment with Executive Order 14154 and the Seven County Decision of the Supreme Court
