Tech

MASTER KEY

iPhone and Android fans told there’s a ‘goldmine’ for crooks on phone as experts urge you to turn on ‘passkeys’ setting

Sean Keach, Head of Technology and Science

Published: 20:24, 6 Jun 2024

ANYONE with an iPhone or Android is being urged to try a clever new feature called passkeys.

A passkey is designed to be a replacement for your password.

You can use a fingerprint scanner to unlock your passkey-sealed accountsCredit: Google

The benefit is that a passkey should be easier to use while offering far greater protection.

Passwords are widely considered to be a very poor way for you to seal your accounts.

And cyber-experts say that it's extremely risky to be using passwords alone to protect one service in particular.

"Your email is a goldmine for cybercriminals because of the extensive amount of information an attacker can gain from it," said Aranza Trevino, of Keeper Security.

"Making it important to protect your email from unauthorized access."

Aranza continued: "If a scammer were to gain access to your email, they could easily use the 'Forgot Password?' option to send a password reset email, enabling them to change your passwords and gain access to your other accounts.

"Just like that, they’ll be able to compromise almost any of your online accounts."

The security expert recommended switching to passkeys instead.

Passkeys let you log in with a scanner on your phone, like Face ID facial recognition or a fingerprint sensor.

and Google have both been hard at work to offer them on their devices.

And they're very easy to set up once you know how.

How does Apple's FaceID tech work?

Apple's facial recognition system for the iPhone X isn't massively complicated. Here are the steps your phone takes:

The phone will use various sensors to work out how much light it needs to illuminate your face.
It then floods your face with infrared light, which is outside the visible spectrum of light.
A dot projector will produce more than 30,000 dots of this invisible light, creating a 3D map of your face.
An infrared camera will then capture images of this dot pattern.
Once your phone has all that info, it can use your face’s defining features – like your cheekbone shape, or the distance between your eyes – to verify your identity.
It computes a score between 0 and 1, and the closer it is to 1, the more likely it is that your face is the same as the one stored on your iPhone.
Apple says there’s a one-in-a-million chance of someone else getting into your iPhone with Face ID, although the system has been tricked with twins.
Still, it’s arguably better than the alternative: Apple’s Touch ID fingerprint scanner has a one-in-50,000 chance if being fooled.

Then you can simply log in with the passkey next time using Face ID or Touch ID – or with your device passcode if that fails.

If you're signing in on another device then you'll need to use your iPhone camera to scan the website's QR code and log in that way.

HOW TO SET UP PASSKEYS ON ANDROID

It's a similar process for Google's passkeys on Android.

You can save your Android passkeys inside the Google Password ManagerCredit: Google

Just go to sign up or log in to a website or app and look for the option to create a passkey.

Make one and then it'll be saved to your Google Password Manager.

This will make your passkey available across all Android apps.

You can find your passkeys by going into your device settings and choosing Passwords.

6 Essential Safety Tips for Online Shoppers

And like on iPhone, you can scan a QR code with your Android phone camera to sign in with a passkey on another device – like a laptop.

Google adds the following tip: "After you scan the QR code on an Android device, you can choose to remember your computer.

READ MORE SUN STORIES

CASH IN

Full list of energy suppliers giving customers free electricity on Christmas Day

NOT KIDDING

I’m mum-shamed for buying my son one Christmas present, I’m not wasting money

"If you do, the computer shows your Android device as an option when you need a passkey.

"When you select it, you receive a notification on your device to verify your identity."

Topics

©News Group Newspapers Limited in England No. 679215 Registered office: 1 London Bridge Street, London, SE1 9GF. "The Sun", "Sun", "Sun Online" are registered trademarks or trade names of News Group Newspapers Limited. This service is provided on News Group Newspapers' Limited's Standard Terms and Conditions in accordance with our . To inquire about a licence to reproduce material, visit our Syndication site. View our online Press Pack. For other inquiries, Contact Us. To see all content on The Sun, please use the Site Map. The Sun website is regulated by the Independent Press Standards Organisation (IPSO)

Our journalists strive for accuracy but on occasion we make mistakes. For further details of our complaints policy and to make a complaint please click this link: mcb777.site/editorial-complaints/

machibet777.com

Most read in News Tech

How does Apple's FaceID tech work?

HOW TO SET UP PASSKEYS ON ANDROID

READ MORE SUN STORIES