Microsoft won't send you SMS texts for login anymore - why it's pushing passkeys instead
Microsoft is discontinuing SMS as a method for account authentication and recovery. The company is promoting passkeys as a more secure alternative due to the vulnerabilities associated with SMS. This change aims to enhance user security against threats like phishing and SIM-swapping attacks.
- ▪Microsoft is phasing out SMS as an authentication method for personal accounts.
- ▪SMS messages are unencrypted and can be intercepted by hackers.
- ▪Users will be prompted to set up a passkey instead of relying on SMS for account access.
Opening excerpt (first ~120 words) tap to expand
Tech Home Tech Security Microsoft won't send you SMS texts for login anymore - why it's pushing passkeys instead Text messages are a weak, vulnerable way to authenticate account logins. Soon, you'll have to switch to one of these safer, more secure methods. Written by Lance Whitney, ContributorContributor May 21, 2026 at 8:20 a.m. PT Screenshot by Lance Whitney/ZDNETFollow ZDNET: Add us as a preferred source on Google.ZDNET's key takeawaysMicrosoft is phasing out SMS as an authentication method.SMS messages are unencrypted and vulnerable to hackers.Microsoft account owners will be prompted to set up a passkey instead.When trying to sign-in to or recover one of your online accounts, you'll often receive a text message that prompts you to verify that you're the account owner.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at ZDNet.
Discussion
0 commentsMore from ZDNet
