Passkeys represent a significant leap in digital security by tethering account access to physical hardware and biometric verification like Face ID or Touch ID. Because these credentials are device-specific and immune to traditional phishing, they eliminate the need for users to memorize complex strings. While tech leaders including Apple, Google, and Microsoft have fully integrated the technology, a substantial portion of the digital landscape remains resistant.
In section Startups & Technology
New tracker shames major platforms for ignoring passkey security
One in four major online services still refuses to adopt passkeys, leaving millions of users vulnerable to credential theft. A new project, whynopasskeys.com, is now publicly cataloging these holdouts, aiming to pressure industry giants like Netflix, Spotify, and Instagram into abandoning outdated password reliance in favor of biometric authentication.
Security researcher Scott Helme, the creator of the new directory, argues that public accountability is a powerful catalyst for corporate change. By highlighting companies that lag behind, the site forces organizations to confront their security gaps in a visible way. Meta presents a confusing case in this transition: while it supports passkeys on Facebook, the feature remains absent on Instagram unless tied to a specific secondary account. Representatives for Meta, Netflix, and Spotify did not respond to requests for comment regarding their implementation timelines.
Comments (0)
No comments yet. Be the first!