The FBI has warned Microsoft users about a phishing scam targeting passwordless sign-in methods, urging vigilance against fake authentication requests.
The FBI is warning Microsoft users about a sophisticated phishing scam exploiting passwordless sign-in methods to hijack accounts. Fox News reports that cybercriminals trick victims into approving fake authentication requests or handing over one-time verification codes no password required.
The scam typically starts with convincing emails, texts or fake login pages designed to look legitimate. Once a victim approves a fraudulent prompt or shares a code, attackers waltz straight in.
Security experts are urging users to scrutinise unexpected authentication requests, never share verification codes and activate additional account protections. The FBI also advised reporting suspicious login activity immediately. The warning lands as passwordless authentication grows increasingly common across major online platforms.

