"In reviewing the implementation of several of the most popular software service's passkey authentication flow, nearly all of them can still be bypassed by AitM phishing, using authentication ...