ADVERTISEMENT

A lesson from NPM hacks: It’s time to remove the human factor from authentication factors

As the JavaScript ecosystem is still recovering from the massive supply chain attacks targeting NPM software packages, one thing is clear—you need phishing-resistant authentication now, urges Johannes B. Ullrich, Ph.D., dean of research at SANS.edu.

Phishing resistant, passkeys

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Sep 20, 2025 Updated: 20 September 2025 3 min read
phishing-email
Image by Check Point.
vilius Jurgita Lapienyte Gintaras Radauskas Ernestas Naprys
Get our latest stories today on Google News
Add us as your Preferred Source on Google.
ADVERTISEMENT

If human action is required for authentication, it’s not phishing-resistant

passkeys
Image by Cybernews.
Has my data been leaked?

ADVERTISEMENT