A newly launched accountability website is shining a spotlight on a significant cybersecurity gap in the digital landscape. The platform has identified that 24% of the world’s most visited websites still lack support for passkeys—a passwordless authentication method that security experts widely regard as the gold standard for protecting user accounts from unauthorized access and credential theft.
Passkeys represent a fundamental shift away from traditional password-based authentication, which remains one of the most common vectors for cyberattacks and data breaches. Unlike passwords, which can be guessed, phished, or compromised in large-scale breaches, passkeys use cryptographic technology tied to a user’s device, making them virtually impossible to steal remotely. As cyber threats continue to evolve in sophistication, major technology companies including Apple, Google, and Microsoft have been actively promoting passkey adoption across the digital ecosystem. The fact that nearly one-quarter of top-tier websites have not yet implemented this technology raises important questions about enterprise security priorities and consumer protection.
The newly created registry serves as both a resource and a public pressure mechanism, naming the companies that have yet to modernize their authentication infrastructure. This transparency-driven approach aims to accelerate industry adoption by holding major digital platforms accountable to their users. The website tracks implementation progress, allowing businesses to demonstrate their commitment to security improvements while also giving consumers visibility into which platforms prioritize their digital safety. For technology leaders and enterprise security teams, the listing functions as a benchmark for competitive positioning in an increasingly security-conscious marketplace.
The slow adoption of passkeys among major websites highlights a persistent challenge in cybersecurity: the gap between what security experts recommend and what companies actually implement. While the transition requires investment in infrastructure and development resources, the long-term benefits—including reduced support costs from password resets and decreased breach liability—justify the expenditure. Companies that continue relying on passwords face mounting pressure not only from security advocates but also from users who increasingly understand the risks of traditional authentication methods.
Industry analysts expect this public accountability initiative will accelerate passkey adoption across major platforms. Early adopters have reported smoother user experiences and reduced account takeover incidents, creating a competitive incentive for laggards to upgrade their systems. As regulatory bodies worldwide consider implementing stricter authentication standards, the window for voluntary compliance may be closing for enterprise platforms.
What This Means For You: If your favorite websites haven’t yet adopted passkeys, you remain vulnerable to common attack vectors like phishing and credential stuffing. Consider using a password manager in the interim while encouraging major platforms to upgrade their security infrastructure. For businesses, the message is clear: passkey implementation is no longer optional—it’s becoming a baseline expectation for responsible digital stewardship.
Source: Original Article