Yahoo Mail upgrade sheds passwords

Yahoo on Thursday set out to make its free email service hip again with upgrades that included getting rid of the need for passwords on mobile devices.

 Yahoo new email application allows users to sign-in without passwords, which have long been lambasted as paltry defense mechanisms by security specialists.

 The Yahoo Mail sign-in process called Account Key allows the option of having a message sent to a user's smartphone asking for confirmation that access should be granted online.

 "Passwords are difficult to remember and secondary sign-in verification is inconvenient and confusing,” Yahoo vice president of product management Dylan Casey said in a release.

 'We’re now taking a major leap towards a password-free future with the launch of Yahoo Account Key, which uses push notifications to give users simple and secure access using their mobile device."

 The feature comes nearly two years after hackers slipped into Yahoo Mail accounts to loot information using stolen passwords.

 A malicious computer program armed with Yahoo Mail passwords and usernames apparently slipped into accounts aiming to glean names and addresses from messages that had been sent.

 "Security attacks are unfortunately becoming a more regular occurrence," Yahoo senior vice president for platforms and personalization products Jay Rossiter said at the time that cyber attacks were "becoming a more regular occurence."

 Rival Web-based email service providers such as Google have encouraged people to use "two-factor authentication" that calls for passwords to be backed up by something else, such as codes sent to smartphones in text messages, in order to get into accounts.

 Yahoo has said it hopes to phase out passwords to make email more secure, while adding improved encryption.