Skip to main content
  1. Home
  2. Computing
  3. News

Yahoo is eliminating passwords completely

By

Yahoo Logo
Ken Wolter / Shutterstock
Be honest, how well organized are you with your passwords? Do you have a different one for each of your online accounts? Or do you use the same one for all of them, something like ‘password12345‘, perhaps?

With tech firms pushing us to hold more and more personal data in the cloud, and a seemingly growing army of hackers doing their level best to get hold of it, online security is more important than ever. Two-step authentication goes some way to improving the situation, but many people don’t bother setting it up.

Recommended Videos

While for many Web users passwords are still as much of a hassle as they ever were, Yahoo wants to change that. Its recently announced solution is an on-demand system where a unique password is sent to your handset each time you want to log in to your account. In other words, you don’t need to remember a thing.

Related

It only takes a moment to set up, and here’s what to do:

  • First, sign in to your Yahoo account
  • Click on your name top right to visit your account information page
  • Click ‘security’ in the left bar
  • Click the ‘on-demand passwords’ slider to opt in
  • Enter your handset number and wait for Yahoo to send a verification code
  • Enter the code and you’re all set

The next time you go to sign in to your Yahoo account, you’ll receive a single-use four-character password to your phone. If you’re thinking this sounds a bit like two-step authentication without the first step, you’d be right.

While it seems like a convenient solution for anyone who has a hard time remembering passwords, you’ll have to make certain your handset is close by at all times, and you definitely wouldn’t want it falling into the wrong hands.

Yahoo’s is one of an increasing number of solutions offered by firms exploring ways of helping people log in to their accounts more easily, with the main challenge being finding a system that balances security and convenience.

Yahoo’s on-demand passwords are currently available for U.S.-based users only, but hopefully the system will soon be rolled out to those in other countries, too.

[Source: Yahoo]

Editors' Recommendations

Topics
Trevor Mogg
Trevor Mogg
Contributing Editor
Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…
Hackers may have stolen the master key to another password manager
keepass master password plain text vulnerability open padlock cybersecurity

The best password managers are meant to keep all your logins and credit card info safe and secure, but a major new vulnerability has just put users of the KeePass password manager at serious risk of being breached.

In fact, the exploit allows an attacker to steal a KeePass user’s master password in plain text -- in other words, in an unencrypted form -- simply by extracting it from the target computer’s memory. It’s a remarkably simple hack, yet one that could have worrying implications.

Read more
Hackers are using a devious new trick to infect your devices
A person using a laptop with a set of code seen on the display.

Hackers have long used lookalike domain names to trick people into visiting malicious websites, but now the threat posed by this tactic could be about to ramp up significantly. That’s because two new domain name extensions have been approved which could lead to an epidemic of phishing attempts.

The two new top-level domains (TLDs) that are causing such consternation are the .zip and .mov extensions. They’ve just been introduced by Google alongside the .dad, .esq, .prof, .phd, .nexus, .foo names.

Read more
Google just made this vital Gmail security tool completely free
google makes gmail dark web monitoring free laptop stephen phillips

Hackers are constantly trying to break into large websites to steal user databases, and it’s not entirely unlikely that your own login details have been leaked at some point in the past. In cases like that, upgrading your password is vital, but how can you do that if you don’t even know your data has been hacked?

Well, Google thinks it has the answer because it has just announced that it will roll out dark web monitoring reports to every Gmail user in the U.S. This handy feature was previously limited to paid Google One subscribers, but the company revealed at its Google I/O event that it will now be available to everyone, free of charge.

Read more