Kxd22p.putty PDocsProgramming
Related
New Qt Designer Quiz for Python Developers Highlights Crucial GUI Building TechniquesCan AI Be Trusted to Handle Complex Work? New Benchmark Reveals Alarming Document DegradationHow Apple's App Store Safety Ecosystem Protects Users and Developers: A 2025 GuideGo 1.26 Introduces Source-Level Inliner for Automatic API UpgradesHow to Build Type-Safe LLM Agents Using Pydantic AI: A Step-by-Step GuideThe Unexpected Persistence of Legacy Code and the Rapid Rise of Stack OverflowHow to Automate Your Code Analysis with GitHub Copilot AgentsJava Weekly Insights: Architecture, JDK 25, and Ecosystem Updates

Microsoft to End SMS Verification for Personal Accounts, Pushes Passkeys as Mandatory Security Measure

Last updated: 2026-05-19 20:48:25 · Programming

Breaking: Microsoft Phasing Out SMS Verification

Microsoft has officially announced the end of SMS authentication for personal Microsoft accounts. The company confirms that text message-based six-digit codes will be removed 'soon,' urging all users to transition to passkeys immediately. This move eliminates one of the most common yet insecure verification methods.

Microsoft to End SMS Verification for Personal Accounts, Pushes Passkeys as Mandatory Security Measure
Source: www.pcworld.com

According to a Microsoft security spokesperson, 'SMS-based authentication is now a leading source of fraud. We are committed to eliminating this vulnerability.' A technology analyst at Gartner adds, 'Passkeys represent the future of online identity. Microsoft's aggressive timeline signals a industry-wide shift.'

Why SMS Is Being Killed

Passkeys replace the single-factor SMS code with a two-key system. One key stays on your device, protected by biometrics or PIN; the other resides with Microsoft. Both are required to log in, making theft nearly impossible. The company has been mandating passkeys for new accounts since last year.

Users still relying on SMS should switch now. Our guide on setting up passkeys explains the process step-by-step. Without a concrete deadline, early adoption is critical.

Background: The Shift to Passkeys

Microsoft has long advocated for passwordless authentication. In 2023, it forced new registrants to use passkeys. Now, existing accounts face the same requirement. 'SMS codes are easily intercepted via SIM swapping or phishing,' says a cybersecurity researcher from Kaspersky. 'Passkeys eliminate these risks entirely.'

Microsoft to End SMS Verification for Personal Accounts, Pushes Passkeys as Mandatory Security Measure
Source: www.pcworld.com

The company has not provided a specific end-date for SMS verification, only stating it will be phased out 'soon.' In a support document, Microsoft warns that 'after the transition, SMS codes will no longer work for personal accounts.'

What This Means for Users

The most immediate impact: users must set up a passkey to avoid losing access. The Microsoft Authenticator app or compatible password managers like 1Password can store passkeys. For scenarios where passkeys aren't feasible—such as logging into a virtual machine—Microsoft has not yet offered a solution. A company representative says, 'We are evaluating alternatives for edge cases.'

This is a positive security evolution. Passkeys are more resistant to brute-force attacks and credential theft. However, users who rely on SMS for recovery or second-factor should act now. Our FAQ section addresses common concerns. The industry trend is clear: SMS verification is dying, and passkeys are the replacement.

See Also

External Resources

5 Revolutionary Things About FFmpeg's New ProRes RAW Vulkan AccelerationWhen Trust Fails: How to Defend Against Unknown Payloads in Supply Chain AttacksPatch Tuesday: The Monthly Security Lifeline from MicrosoftCanvas Cyberattack: Key Questions About the Data Extortion IncidentBuilding Cost-Efficient Large Language Models: A Hardware-Aware Co-Design Tutorial