Yahoo wants you to kill your passwords

Web giant adds secure notifications to Finance, Fantasy, Mail, Messenger and Sports apps

Yahoo is intensifying its mission to "kill the password" with the release of a new account login process for Yahoo apps.

The web services provider stated its intentions to ditch the password a year ago, when it announced its plans to introduce "on-demand passwords" that would be texted to a user's mobile devices.

Now those plans have been polished and rolled into a new login method, Yahoo Account Key.

The service works by sending Yahoo users a push notification on their mobile phone for them to approve whenever they attempt to sign into their Yahoo account from a new desktop browser.

Once the user receives the notification and taps the approval button, they will immediately be signed in.

"Passwords can be a hassle they're easy to lose track of and forget, or they are weak passwords that are vulnerable to hacking. At Yahoo, we are moving fast in our mission to kill the password' and make it easier for users to sign in without sacrificing security," said Yahoo product manager Lovlesh Chhabra in a blog post.

This new login method will appear for Yahoo Finance, Fantasy, Mail, Messenger, and Sports for iOS and Android.

Yahoo claimed this method of account verification is more secure than passwords. However, the company also said users must not sign out of their Yahoo app or turn off notifications "as this will prevent you from receiving your Account Key push notification".

Yahoo is not alone in its decision to explore new methods of user verification. Other web service providers have also been taking steps to move away from account passwords.

Bad passwords are one of the biggest reasons people's accounts are hacked, with the most commonly used password in 2015 being '123456'.

Music identification app Shazam does not use passwords at all, instead sending a verification email to the users when they attempt to sign to the app for the first time on a new device.

Google offers its Google Authentication app, which is used as an additional layer of verification, via randomised passcodes on the user's mobile device, for selected web services.

And the latest Apple devices, such as the iPhone SE and iPad Pro, include fingerprint sensors which enable user to confirm their identify simply by holding their finger to the devices home button.

Featured Resources

BCDR buyer's guide for MSPs

How to choose a business continuity and disaster recovery solution

Download now

The definitive guide to IT security

Protecting your MSP and your customers

Download now

Cost of a data breach report 2020

Find out what factors help mitigate breach costs

Download now

The complete guide to changing your phone system provider

Optimise your phone system for better business results

Download now

Recommended

Data breach exposes widespread fake reviews on Amazon
data breaches

Data breach exposes widespread fake reviews on Amazon

7 May 2021
TsuNAME vulnerability could enable DDoS attacks on major DNS servers
distributed denial of service (DDOS)

TsuNAME vulnerability could enable DDoS attacks on major DNS servers

7 May 2021
What are SSH keys?
cyber security

What are SSH keys?

7 May 2021
Google’s about to push everyone into two-factor authentication
Security

Google’s about to push everyone into two-factor authentication

6 May 2021

Most Popular

KPMG offers staff 'four-day fortnight' in hybrid work plans
flexible working

KPMG offers staff 'four-day fortnight' in hybrid work plans

6 May 2021
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

29 Apr 2021
How to move Windows 10 from your old hard drive to SSD
operating systems

How to move Windows 10 from your old hard drive to SSD

30 Apr 2021