TECH NEWS

Microsoft says cu l8r to text message security

https://image.theregister.com/5243350.jpg?imageId=5243350&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=1200&height=683

Old, busted, insecure authentication to be replaced with something shinier and safer

Microsoft has confirmed that SMS is on the way out as a method of authentication and recovery for personal Microsoft accounts.

Fraud and dubious security were cited as reasons for the move: "SMS authentication is vulnerable to phishing and SIM-swap attacks." Passwordless accounts, passkeys, and verified email are the future, according to Microsoft.

The announcement was first spotted by WindowsLatest and comes as passkeys are increasingly accepted as a default authentication standard. In April 2026, the UK's National Cyber Security Centre officially endorsed the technology and urged consumers to adopt it.

For its part, Microsoft has promoted the use of passkeys for more than a year, declaring in 2025 that all new Microsoft accounts would be passwordless by default.

As such, the days of SMS as a method of authentication and account recovery have been numbered for some...

Copyright of this story solely belongs to theregister.com. To see the full text click HERE

Read more