Google is changing the way you enable 2FA. (File Photo)
Google has announced it is simplifying the process of enabling the 2-step verification process, making it easy for users to increase their account security. The tech giant said that instead of entering your phone number, you will now be able to use a ‘second step method’ such as Google Authenticator or use a hardware key before enabling the 2-factor authentication.
Compared to the previous implementation, the new way is more secure as it eliminates the risk of bad actors getting access to your one-time passwords from SMS. In the last few years, SMS 2FA has proven to be a less secure method of delivering one-time passwords as it is subject to security exploits like phone cloning.
In a blog post, Google said the changes will be helpful for organisations that depend on time-bound one-time passwords. It goes on to say that the users will have two options to link a security key – use a passkey or register using a FIDO1 credential. However, if you happen to use a Workspace account linked to an organisation with the “Allow users to skip passwords at sign-in by using passkeys” option disabled, you may still have to enter the password.
Also, if a user who has enabled 2-factor authentication turns it off, their account settings and enrolled second steps like backup codes won’t be automatically removed from their account. Google says these changes are currently rolling out for both Google Workspace and personal accounts, but it may take some time before it is available.