Microsoft to stop sending SMS codes for personal accounts
Microsoft is phasing out SMS codes for personal account authentication and recovery. The company is shifting towards passwordless methods, such as passkeys and verified email, to enhance security and user experience. This change aims to reduce the risks associated with SMS-based authentication, which has become a target for fraud.
- ▪Microsoft is committed to advancing security standards by eliminating SMS as a method of authentication.
- ▪Passkeys are being introduced as a more secure and user-friendly alternative to SMS codes.
- ▪The transition to passkeys aims to reduce the risk of phishing and account takeover.
Opening excerpt (first ~120 words) tap to expand
Microsoft to stop sending SMS codes for personal accounts Microsoft is committed to advancing security standards and as such, we will start phasing out SMS as a method of authentication and account recovery for personal Microsoft accounts. Why is SMS no longer a method of authentication and account recovery for a personal Microsoft account? Microsoft believes that the future of authentication is passwordless, secure, and user-friendly. SMS-based authentication is now a leading source of fraud, and by moving to passwordless accounts, passkeys, and verified email, we're helping you stay ahead of evolving threats while making account access simpler and more seamless.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Microsoft.