According to a report, Google will no longer support two-factor authentication (2FA) for Gmail that is based on SMS. According to reports, the company plans to replace the SMS codes that are currently sent to Gmail users with support for quick response (QR) codes. Since malicious users can fool users into sharing their login codes they received via SMS, circumventing the security provided by the outdated but still functional 2FA system on multiple platforms, the move is anticipated to improve the security of Google accounts.
To stop SMS abuse, Gmail will stop using SMS authentication codes.
In the upcoming months, Google plans to replace its SMS authentication codes with QR codes, per a Forbes report. When a user logs into a Google account, the company currently sends them a six-digit code via SMS that they need to enter after entering the correct password. More secure options have been added in the years since the search giant first introduced this type of 2FA in 2011.
Gmail users will be shown a QR code that they must scan with their smartphone’s camera app after the company discontinues support for SMS-based 2FA codes. The business thinks that once the right password has been entered, these QR codes will provide a more secure method of user authentication.
Users are at increased risk when using SMS codes. Gmail spokesperson Ross Richendrfer told the publication on Sunday, “We’re happy to present a novel new strategy to reduce the surface area for attackers and keep users safer from malicious activity.”
facilitating the use of SMS-based Scammers can use “SIM swapping” attacks to target particular users and obtain their phone number, or they can trick users into sharing SMS codes. These are just two of the security risks associated with 2FA. Similar to X (formerly Twitter), Google is attempting to combat SMS fraud, in which con artists ask businesses to send
When each message is delivered, money is sent to designated numbers.
It is currently unknown if Google will also discontinue the option for users to receive the code by phone call rather than SMS. As a type of MFA, the business typically shows a login prompt on a user’s smartphone, and users can tap a button to finish the login process. Time-based one-time passwords (TOTP) are also supported by Google and can be used with Google Authenticator or password managers.
CREDIT: Gadget360, Allneeds
Related News:
No products in the cart.