Google to replace the SMS based two-factor authentication?
Google’s gmail is considered to be the most used tech app of the google. Google’s gmail has its own security and privacy settings which helps us to protect our data from getting hacked or leaked. Google setting has a SMS based two factor authentication through which the data of the gmail was secured.
SMS based two-factor authentication to be replaced:
According to the sources , Google is in process of phasing out SMS based two-factor authentication for Gmail users replacing it with QR codes verification.The main motive of the replacing is said to be the enhancement in the security settings also reducing the factors of getting hacked/ leaked . It is aiming to reduce the risks associated with phishing attacks and SIM swapping fraud, which cyber criminals use to hijack the users phone numbers and steal the verification code.
Currently, gmail users receive a six-digit authentication code via SMS after entering the password. This system of the SMS verification was introduced in the year of 2011. This system happens to be the most highly used security measures. However, now google is set to roll out the SMS verification and to apply the new method of QR code. Google is now set to roll out QR codes as a replacement, which users will need to scan with their smartphone cameras to verify their identity.
Google is not the first company to rule out the SMS based authentication , the app formerly named twitter (X) has previously abandoned the same security factor due to concerns over SMS fraud, where attackers exploit telecom loopholes to profit from automated text message verifications. However, Google has not yet confirmed an official rollout date, the transition to the QR based authentication is expected to take place over the next few months. In addition to QR codes, Google already offers more secure login options, including:
Google Prompts:
Users receive a pop-up notification on their registered device, allowing them to approve or deny a login attempt.
Authenticator Apps:
Time-based one-time passwords (TOTP) generated by Google Authenticator or third-party apps like Authy.
Security Keys:
Physical security keys such as YubiKey offer hardware-based authentication for maximum protection.