Meta has announced that Facebook is introducing passkey support on its mobile app to enhance account security and protect users from phishing attacks. The feature will allow users to log into their Facebook accounts using secure biometric or device-based authentication methods, such as a fingerprint, facial scan, or PIN instead of traditional passwords.
The move makes Facebook the latest major platform to adopt passkey technology, joining the likes of Google, Apple, Microsoft, and WhatsApp in moving toward passwordless authentication.
What Are Passkeys, and Why Are They Safer Than Passwords?
Passkeys are cryptographic keys that are stored securely on a user’s device and tied to their identity. Unlike passwords, they:
- Cannot be guessed or stolen
- Cannot be reused or leaked
- Offer built-in phishing resistance
Because passkeys are tied to a specific domain and validated by the browser or operating system, they won’t work on fake or malicious login pages, making it significantly harder for hackers to hijack accounts through phishing schemes.
Facebook Passkey Features at a Glance
- Login via fingerprint, facial recognition, or PIN
- Protection against phishing and credential stuffing
- Passkey support to expand to Messenger soon
- Secure autofill support for Meta Pay transactions
- Password login and two-factor authentication still supported
Meta confirmed that users will still have the option to log in using their existing passwords, security keys, or 2FA codes if preferred.
When Will Passkey Support Launch on Facebook?
Meta has not shared an exact rollout date but says passkey support will arrive “soon” for both Android and iOS devices. The company also plans to introduce the same passkey login method to its Messenger app, offering a consistent authentication experience across its platforms.
Meta Joins Industry-Wide Push for Passwordless Logins
The move aligns with a growing trend among tech giants to eliminate passwords, which remain a leading vulnerability in online security. Companies like Apple, Microsoft, Google, and WhatsApp have already integrated passkey technology, citing its effectiveness in:
- Reducing account takeover incidents
- Mitigating phishing and scam risks
- Improving the user login experience
Meta’s push to adopt passkeys further strengthens its position in the fight against cyber threats while offering a smoother and more secure user experience.
Important Note from EFF
While passkeys drastically reduce the risk of phishing, the Electronic Frontier Foundation (EFF) warns that users who manually enter their passwords into fake websites could still fall victim to scams. This highlights the importance of completely switching to passkey-based login methods where available.
Meta’s introduction of passkey support for Facebook and Messenger marks a major leap in securing user accounts and fighting phishing. As tech companies continue to phase out traditional passwords, Facebook users can now look forward to simpler, faster, and more secure logins on their mobile devices.
