Microsoft is getting rid of SMS two-factor codes

Microsoft:

Microsoft believes that the future of authentication is passwordless, secure, and user-friendly.

SMS-based authentication is now a leading source of fraud, and by moving to passwordless accounts, passkeys, and verified email, we’re helping you stay ahead of evolving threats while making account access simpler and more seamless.

Good. Hopefully this is a trend that more and more companies get onboard with, along with passkey adoption.

I’ve long appreciated Apple’s long-time feature to autofill (and auto-delete) codes via SMS has been a great stop-gap, but we should stop relying on SMS for these things altogether.

Microsoft is getting rid of SMS two-factor codes

Other newsrooms on this story

Related reading

Microsoft is pulling the plug on SMS codes, wants you to switch to passkeys

Microsoft says cu l8r to text message security

Microsoft Is Eliminating SMS Codes for Two-Factor Authentication

Microsoft dice addio agli SMS e punta tutto sulle passkey per l'accesso a…

Modernizing Identity Security Beyond MFA

The New Phishing Click: How OAuth Consent Bypasses MFA