Yahoo! announces its new feature that can potentially kill the password, a two-factor login tool, Yahoo Account Key. This feature will allow Yahoo! users to access their account via push notification to be sent to their designated mobile device when logging in.


“Passwords can be a hassle – they’re easy to lose trackof and forget, or they are weak passwords that are vulnerable to hacking,” wrote Yahoo! Product Manager Lovlesh Chhabra on the company’s security blog.

Each time you sign in, you will receive a push notification on your mobile phone for you to approve,” explained Chhabra. “Once you tap it, you’ll be signed in immediately.”

“It’s secure, and there’s no need to remember a difficult password,” Chhabra added.

This Account Key can be used to log into different Yahoo! sectors such as Yahoo Finance, Mail, Fantasy, Messenger and Sports, either logging in from your mobile or from your desktop.

If you will be logging in from your desktop, you will receive the notification from your registered device. This method will be only available for those who have activated the feature. If you don’t want this feature, usage of a traditional password is an option. Yahoo! is encouraging all to use this feature as it is more secure than the traditional one.

Suppose you don’t have your phone the time you log in, you can still access Yahoo! by answering a series of security questions.

“It’s a major step towards a password-free future, and one where we can say ‘goodbye, complicated passwords!” said Chhabra.

  • Sillie Abbe

    It could end up getting criminals delighted.

    In a world where we live without remembered passwords, say, where our identity is established without our volitional participation, we would be able to have a safe sleep only when we are alone in a firmly locked room. It would be a Utopia for criminals but a Dystopia for most of us.

    • Kitlia Steele

      From a security standpoint this is an advantageous factor. By tying your login to one device and not by a universal access method (passwords), it’s imitating Two-Factor Authentication but without the passwords. The only thing I’m concerned about concerning this is people may be gullible enough to accept the login if requested from an outside source. We’ll see how it plays out with Yahoo.