According to a report, Google will leave support for SMS-based two-factor authentication (2FA) for Gmail. The company will allegedly offer support for a quick response (QR) code to change the SMS code that are currently sent to Gmail users. The move is expected to increase the safety of Google accounts, as malicious users can trick users to share their login code received on SMS, which can sideline safety given by 2FA systems, but still many platforms Is supported on.
Gmail to leave SMS Certification Code to combat SMS misuse
According to a Forbes ReportGoogle will roll out the QR code as a replacement for its SMS authentication code in the coming months. The company currently sends a six -digit code to users through SMS, which should be recorded after providing the right password when logging into the Google account. This was the first form of 2FA introduced by the search giant in 2011, and more secure options have been offered in later years.
Once the company removes support for the SMS-based 2FA code, Gmail users will be presented with a QR code, which should be scanned using the camera app on their smartphone. The company believes that these QR code will provide a more safe way to certify a user, after the correct password is deposited.
âSMS code is a source of increased risk for users. We are pleased to present an innovative new approach to the attackers to reduce the surface area and protect users from malicious activity, âGmail’s spokesman Ross Richendrfer told the publication on Sunday.
Support to SMS-based 2FA presents several security challenges-scammers can trick users in sharing SMS code, or specific users can target with “sim swapping” attacks to access their phone number Are. Like X (East Twitter), Google SMS is also trying to tighten the fraud, where scammers motivate companies to send texts on specific numbers to receive money on giving each message.
Google currently allows users to obtain the code via phone calls instead of SMS, and it is not currently clear whether this option will also retire. The company usually displays a login prompt on the user’s smartphone as MFA, and users can tap on a button to complete the login process. Google also supports the time-based one time password (TOTP) supported on apps such as password manager or Google authenticator.
