InfoSecBulletin Cybersecurity for mankind
GitHub has just announced the exciting release of public beta for passwordless authentication support. This new feature allows users, who choose to participate, to upgrade from security keys to passkeys. It’s a breakthrough in secure access management that is definitely worth exploring!
Passkeys play a crucial role in safeguarding devices such as computers, tablets, or smartphones against potential data breaches. They help prevent phishing attacks and credential theft.
CVSS 10.0 Flaw
Critical flaw in Siemens OZW Web Servers Enable Unauthenticated RCE
Microsoft Patch Tuesday May 2025: 72 flaws, 5 Actively Exploited Zero-Day
OTP glitch disrupted NID services across the country
Google to pay Texas $1.4 billion for location tracking practices
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
ALSO READ:
CVSS 4.0 released: The New Standard for Vulnerability Scoring
They also make it easy to access apps and online platforms using PINs or advanced biometric methods like facial recognition or fingerprints.
By eliminating the need to remember and manage unique passwords for every app and website, they also vastly improve user experience and security.
Hirsch Singhal, the Staff Product Manager at GitHub, announced the exciting news that passkeys are now accessible as a public beta. By choosing to participate in this beta version, users can enhance their security by upgrading their security keys to passkeys. Passkeys can then be used instead of relying on both passwords and 2FA methods.
To enable passkeys on your account, simply click on your profile photo located in the top-right corner of any GitHub page. From there, open the ‘Feature Preview’ menu and click the ‘Enable passkeys’ option.
Next time you sign in, we will ask if you want to upgrade your security key to a passkey. Upgrading will register it again with your passkey provider.
You may have to enter your passkey multiple times while upgrading to make sure we’re upgrading the right credential. Once you do, you’re all set for a passwordless experience.”
How to use passkeys with your GitHub account (GitHub):
GitHub is taking another measure aimed at improving software supply chain security by moving away from simple password-based authentication.
The recent announcement marks the introduction of mandatory two-factor authentication (2FA) for all active developers on the GitHub platform, effective from March 13th.
