Password1: Scammers Exploit Variations of Your Logins
Posted4 months agoActive4 months ago
theguardian.comTechstory
calmmixed
Debate
20/100
Password SecurityScammingWebauthn/passkeys
Key topics
Password Security
Scamming
Webauthn/passkeys
The article discusses how scammers exploit variations of login credentials, and commenters highlight the potential solution of webauthn/passkeys to address this issue.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
2h
Peak period
1
0-3h
Avg / period
1
Key moments
- 01Story posted
Sep 14, 2025 at 2:40 AM EDT
4 months ago
Step 01 - 02First comment
Sep 14, 2025 at 5:10 AM EDT
2h after posting
Step 02 - 03Peak activity
1 comments in 0-3h
Hottest window of the conversation
Step 03 - 04Latest activity
Sep 16, 2025 at 3:09 AM EDT
4 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
Discussion (3 comments)
Showing 3 comments
SahAssar
4 months ago
1 replyThese sort of articles should definitely mention webauthn/passkeys. It's the only solution that actually solves these (including phising) problems.
witrak
4 months ago
1 replyUntil there are no unified, standard solutions this is too difficult to be achieved in practice.
SahAssar
4 months ago
There is a standard solution, it works well. What is still being worked on is portability, but if you are securing your most important stuff (banking, email) then passkeys are definitely workable without portability since if you switch ecosystems you can sign in with the old ecosystem and register the new one.
View full discussion on Hacker News
ID: 45237959Type: storyLast synced: 11/17/2025, 2:03:10 PM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.