Security Warning: The Risks of Using Passkeys for Data Encryption
Passkeys are the future of authentication, but using them for data encryption is a disaster waiting to happen. Overloading these credentials creates a dangerous blast radius that can lead to the…
Read the full articleYou might also wanna read
CVE-2026-61500: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in rejetto hfs
Rejetto HFS versions 3.0.0 through 3.2.0 use a cryptographically weak pseudo-random number generator (Math.random()) to derive session-cooki
Credential Stuffing Attacks Shows the Importance of Password Security
Recent credential stuffing attacks demonstrate the importance of password security. Here's how to prevent credential stuffing attacks.
Only 28% of financial workforce MFA is phishing-resistant
Passwords remain part of many workforce authentication flows in financial organizations, making phishing and credential theft major identity
How to protect yourself from dark web risks and password stuffing attacks
If you’ve had an email address for more than a few years, your information has likely been exposed somewhere.
FusionAuth's Intelligent MFA uses risk-based scoring to reduce authentication friction for trusted users
FusionAuth 1.68 ships Intelligent MFA — 10 risk signals, scored inside your own deployment, and included in every paid plan because identity
How to Choose a Password - Computerphile
I recommended diceware in my above post because I wasn’t familiar with StrongPhrase (I saw the mentions of it above but didn’t have time to

Comments
Sign in to join the conversation.
No comments yet. Be the first.