April 2026

Passkeys vs Passwords

It doesn't have to be complicated

We've all been asked to create a passkey at some point over the past couple years, but few of us could explain what a passkey is or why it's better than a password. But what if there was a simple analogy that anybody could understand?

​Passkeys vs Passwords: an explanation that makes sense​

Go Deeper: Of course, there are pros and cons to any new security protocol. Below you can dig deeper into how to create your first passkey, or you can watch a technical explanation of how they work from Computerphile.

Passkey tutorial Learn how to create a passkey using your Amazon account. ​Watch the video →​

Deep dive Get a technical explanation of how they work. ​Watch the video →​

a good illustration

Hi [CORRECTED_NAME GOES HERE], it's funny...while doing research for this video, I actually tried to see if I could find a way to explain the cryptography behind passkeys using simple math equations. I really do love math...

...but cryptographic algorithms are crazy.

I have high respect for people who are developing all of these new protocols.

Speaking of which, one of the things I talk about toward the end of the video is the new Credential Exchange Protocol (CXP) that is slowly getting adopted across the industry.

Before this, anytime you wanted to move your password vault from one place to another, the file was unencrypted and it was impossible to move 2FA codes and passkeys.

With CXP in place, all of that change. Password managers are slowly getting on board (Bitwarden is already doing it but others like 1Password are behind the curve).

It solves one of the problems I've had with passkeys when they first came out - they aren't portable.

This Week in Privacy News

​Watch out for Eurail data breach​

European rail pass provider Eurail B.V. notified regulators that hackers stole names and passport numbers (plus additional details like addresses, dates of birth, and health data for some DiscoverEU participants) in a December 2025 incident.

--> Therecord.media/eurail-reports-data-breach-impacting-over-300000

​DarkSword Hacking tool for iPhones​

Last week, cybersecurity researchers uncovered a hacking campaign targeting iPhone users that used an advanced hacking tool called DarkSword. Now someone has leaked a newer version of DarkSword and published it on the code-sharing site GitHub.

--> Techcrunch.com/2026/03/23/someone-has-publicly-leaked-an-exploit-kit-that-can-hack-millions-of-iphones/
​

​FBI Director just got hacked​

Threat actors with ties to Iran successfully broke into the personal email account of Kash Patel, the director of the U.S. Federal Bureau of Investigation (FBI), and leaked a cache of photos and other documents to the internet.

--> Thehackernews.com/2026/03/iran-linked-hackers-breach-fbi.html

Your Thoughts?

Have you migrated over to passkeys yet? Reply to this email to let me know.

Have a great week.

✌️

Josh

​​​

3824 Cedar Springs Rd #801-8170, Dallas, TX 75219
​Unsubscribe · Preferences​