Here is when the passwords will be deleted.
Republished on May 31 with a new attack on the passwords of the Microsoft account.
Microsoft wants Delete passwords For its billions of users, now “now”The password era ends“And appears on the context of hundreds of millions of e-mail addresses and stolen passwords.” The bad players know “passwords are finished, Microsoft says:” This is why they desperately accelerate the attacks related to passwords when they can always. “All this amplifies the risk for anyone does not set the security of his account.
In parallel, Microsoft makes another change of title, deleting passwords for millions of users at only 8 weeks. Anyone using Microsoft Authenticator is warned that “from August 2025, your recorded passwords will no longer be accessible and that the unregistered generated passwords will be deleted.” You have to act now.
Here are your deadlines:
- “From June 2025, you will no longer be able to record new passwords in Authenticator.
- In July 2025, you will not be able to use Autofill with Authenticator.
- From August 2025, your recorded passwords will no longer be accessible in Authenticator. “”
The company’s solution is to move the automatic first, then to any form of password management on board. “Your Recorded passwords (But not your Password generated History) and addresses are safely synchronized with your Microsoft account, and you can continue to access it and take advantage of the automatic transparent functionality with Microsoft Edge. »»
Microsoft has added an authenticist screen with an “ignite the edge” button because its current campaign to change users to its own browser continues. It is not only with passwords, of course, there are endless warnings and Nags in Windows and even pointers in security opinions Go to the edge for safety and safety.
Microsoft says that “to continue using the generated passwords, save them from generators (via or from the password tab) in your recorded passwords” and that “after July 2025, all payment information stored in Authenticator will be deleted from your device”. And “After August 2025, your recorded passwords will no longer be accessible in the authenticator and any unregistered generated password will be deleted.”
Ironically, the Microsoft authenticator will continue to support Passkeys and this is in fact what all users should do now. Forget the old -fashioned passwords and two -factor authentication (2FA), all critical accounts should have added work keys when available, especially your Microsoft and Google accounts.
Passwords end in authenticator
Microsoft wants users to delete passwords once it is done, so there is no inherited vulnerability, although Google is not yet as far. However, you must delete SMS 2FA and use an application or code based on at least keys.
FidoThe latest research reports according to which “more than 35% of people had at least one of their compromised accounts due to password vulnerabilities … This is important for the adoption of passing key, because 54% of people familiar with Pass keys consider them more practical than passwords, and 53% think they offer greater security.”
Notwithstanding these authenticator changes, Microsoft users should use it as a prompt to delete passwords and replace them with Passkeys, according to Windows-Makers. This is particularly true given by increasing relationships for bypassing two factors (2FA) which make more and more basic forms of redundancy 2FA.
Microsoft accounts are now in danger of a new attack which has diverted Google’s application scripts to provide a veil of authenticity when sending malicious phishing emails. By Cybersecurity newsThe attack deploys “a fraudulent connection window that imitates authentic authentic microsoft authentic interfaces”.
The original warning of Cofense Now attracts attention (1,,2). The search team has found an “attack (which) uses an email pretending to be an invoice, containing a link to a web page that uses the Google Apps script, a development platform integrated into the product of Google products.
Although you can monitor the invoices hosted on “Script (.) Google (.) Com”, this is how the attack manifests itself, the best advice is just to consolidate your Microsoft accounts. If you use Passkeys and delete account passwords – according to business advice to delete this inherited vulnerability – then you will be protected. In short, do not move the passwords of the authenticator, modify how these accounts are secure instead.
