InfoSecBulletin Cybersecurity for mankind
GitHub has just announced the exciting release of public beta for passwordless authentication support. This new feature allows users, who choose to participate, to upgrade from security keys to passkeys. It’s a breakthrough in secure access management that is definitely worth exploring!
Passkeys play a crucial role in safeguarding devices such as computers, tablets, or smartphones against potential data breaches. They help prevent phishing attacks and credential theft.
Critical PHP Zero-Day Vulnerability found in Craft CMS To Gain RCE
For US$2.6bn, Mastercard acquires threat intelligence firm Recorded Future
Eight New ICS Advisories released by CISA
Authority Denies
Hacker claim ransomware attack on Indonesia’s state bank BRI
London-based company “Builder.ai” reportedly exposed 1.2 TB data
(CVE-2024-12727, CVE-2024-12728, CVE-2024-12729)
Sophos resolved 3 critical vulnerabilities in Firewall
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA
CVE-2023-48788
Kaspersky reveals active exploitation of Fortinet Vulnerability
U.S. Weighs Ban on Chinese-Made Router TP-Link: WSJ reports
Daily Security Update Dated: 18.12.2024
ALSO READ:
CVSS 4.0 released: The New Standard for Vulnerability Scoring
They also make it easy to access apps and online platforms using PINs or advanced biometric methods like facial recognition or fingerprints.
By eliminating the need to remember and manage unique passwords for every app and website, they also vastly improve user experience and security.
Hirsch Singhal, the Staff Product Manager at GitHub, announced the exciting news that passkeys are now accessible as a public beta. By choosing to participate in this beta version, users can enhance their security by upgrading their security keys to passkeys. Passkeys can then be used instead of relying on both passwords and 2FA methods.
To enable passkeys on your account, simply click on your profile photo located in the top-right corner of any GitHub page. From there, open the ‘Feature Preview’ menu and click the ‘Enable passkeys’ option.
Next time you sign in, we will ask if you want to upgrade your security key to a passkey. Upgrading will register it again with your passkey provider.
You may have to enter your passkey multiple times while upgrading to make sure we’re upgrading the right credential. Once you do, you’re all set for a passwordless experience.”
How to use passkeys with your GitHub account (GitHub):
GitHub is taking another measure aimed at improving software supply chain security by moving away from simple password-based authentication.
The recent announcement marks the introduction of mandatory two-factor authentication (2FA) for all active developers on the GitHub platform, effective from March 13th.
