The Passwordless Future Is Years Away. Here Is What Businesses Should Do Now
TDW, Monday, March 23rd, 2026
Every year since roughly 2018, the cybersecurity industry has declared that passwords are dying. Passkeys, biometrics, and FIDO2 hardware tokens would replace them. The promise was elegant: no more breached vaults, no more credential stuffing, no more sticky notes on monitors.
It has not happened. Not at scale, anyway.
A March 2026 report from HYPR, an identity security firm, found that 76 per cent of organisations still rely on legacy passwords as their primary authentication method. Only 43 per cent have deployed any form of passwordless authentication, and of those, the vast majority have rolled it out to less than half their workforce.