Researchers from SquareX said they were able to compromise passkeys through browser #vulnerabilities. The researchers presented their findings at Def Con 33, showing attackers can use #malicious extensions or scripts to intercept passkey workflows, making fraudulent passkey prompts appear legitimate. But security experts have criticized the research, saying it demonstrates a misunderstanding of the FIDO specifications and security principles.
Full Story: TechRadar (8/28)
Self preservation in Action
Experts will always deny what is obvious to protect their decisions in this false security playing field.