VulnerabilityBleeping Computer
4.0 — MEDIUM
Microsoft to roll out Entra passkeys on Windows in late April
Microsoft will roll out passkey support for phishing-resistant passwordless authentication to Microsoft Entra‑protected resources from Windows devices starting late April. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
Microsoft is rolling out Entra passkeys on Windows, a phishing-resistant passwordless authentication feature, in late April, targeting corporate, personal, and shared devices, with admin controls via Conditional Access and Authentication Methods policies.
⚙️Technical Details
💥Impact Assessment
Severity: Medium
Who Is at Risk
Users of Microsoft Entra-protected resources on Windows devices
🛡️Recommended Actions
1Enable 'Microsoft Entra ID with passkeys' in the 'Authentication Methods policy'
2Configure Conditional Access policies to allow device sign-in
3Monitor for phishing and malware attacks targeting Microsoft Entra single sign-on accounts
📦Affected Products
Software:WindowsHardware: None
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.