Saw this [article from The Verge](https://www.theverge.com/2022/8/31/23329373/dashlane-passkeys-password-manager?fbclid=IwAR2osU0FeCEN-NeEM1Mj6NJc2XLhWLbtsntT30hq7eqglghWh-k7iH6Wn94) that is very hyped about it. But it seems like a token is stored on a device, and presumably someone could steal the device and have the same benefits of having all your passwords. I don’t understand how having no passwords makes anyone’s data safer.
In: 2
most passwords are gotten from either:
phishing, so sending out fake links, hoping you input your name and password into the “dank of america dot xyz”
or buying them from leaks (shitty webserver has shitty security, hackers steal millions of username — password (hash) combos, and chances are they will be using the same password everywhere, may aswell try them
None of these methods work with a physical device
Latest Answers