Skip to main content
  1. Home
  2. Computing
  3. News

Microsoft’s authenticator app is now all you need to log in with your smartphone

Jon Martindale
By

microsoft authenticator single factor microsoftauthenticator01
Microsoft
Microsoft has made it possible to use only your smartphone to log in to your Microsoft account, ditching the need for what is traditionally the first line of defense against unwanted account access: the humble password. Although less secure than complete two-factor authentication, Microsoft contends that this is still more secure than just using a password and much less cumbersome for the user.

One of the oldest and still hardest-to-solve questions within any technology space is how do you digitally prove someone is who they say they are? Passwords are one of the most common practices, but as has been shown time and again, they rarely offer much of a hurdle for nefarious actors. Two-factor authentication with a smartphone is becoming more common, but Microsoft has decided that it’s better just by itself.

Recommended Videos

The problem with a password, Microsoft claims in its explanatory blog post (via Ars), is that passwords can be easily phished, stolen, or forgotten. Consider too that most people already have a pin code or similar security on their phone and the firm believes smartphone logins are secure enough while feeling “natural and familiar.”

Related

While Microsoft’s login system does let you use the authenticator app to double down on security for a number of sites and services, the Microsoft account can be logged into with smartphone authentication only. It is also limited to iOS and Android platforms for now, despite the app being compatible with Windows phones. It may add support for that much smaller user group in the future, we’re told, but only if this feature sees some success.

To be one of the first to trial this smartphone-only authentication system, download or open up the app on your handset, select the drop-down button on your account and choose “Enable phone sign-in.” That’s it.

There will be options for password usage if your phone isn’t with you, which could open up a vector for more traditional hacking. However, these sorts of security features have the potential to benefit the least secure out there, so removing a potential password reuse login system for those users could lead to improved overall digital security for some.

Microsoft is looking for feedback on its new system, so if you have something to say about it, don’t be afraid to let the company know.

Editors' Recommendations

Topics
Jon Martindale
Jon Martindale
Computing Coordinator
Jon Martindale is the Evergreen Coordinator for Computing, overseeing a team of writers addressing all the latest how to…
The U.S. government says you need to update Firefox right now
Mozilla Firefox

If you use the Mozilla Firefox web browser, the government recommends that you update the browser because of a zero-day vulnerability that could enable hackers to take control of your computer. 

The United States Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) is encouraging those with the Firefox browser to update to versions 72.0.1 and ESR 68.4.1.

Read more
Update your Twitter app right now if you’re on Android
Hand holding a Twitter phone

Twitter says it has patched a vulnerability inside its Android app that could have potentially let malicious actors view information of private accounts and take over profiles through an intricate back-end process. If a hacker managed to exploit the loophole, they could send direct messages and tweets on the target account’s behalf.

The social network claims so far it hasn’t discovered any affected user, nor found evidence of whether a third-party service has taken advantage of the bug. However, Twitter is reaching out to the people whose details may have been exposed. It’s unclear how long the vulnerability was left out in the open. The issue is not present on Twitter’s iOS app.

Read more
Twitter no longer needs phone numbers for two-factor authentication
twitter hide reply tool test in usa apple coffee cup 58639

Twitter's two-factor authentication system has received a long-requested boost in security, as the feature will no longer require the phone number of users.

Twitter rolled out its two-factor authentication system years ago. The feature, upon activation, requires account owners to type in a code sent to their associated phone number every time they attempt to sign in. It aims to provide an extra layer of security beyond account passwords, which have been prime targets for hackers.

Read more