Adversary-in-the-middle attacks can strip out the passkey option from login pages that users see, leaving targets with only authentication choices that force them to give up credentials.

  • Reddfugee42@lemmy.world
    link
    fedilink
    English
    arrow-up
    14
    arrow-down
    2
    ·
    4 months ago

    Passkeys are so secure that it’s easier just to hack the page and not offer them as a login option, but that’s your takeaway and you got multiple upvotes? God help us.