Google is working on phasing out SMS-based two-factor authentication (2FA) for Gmail users, replacing it with QR code verification. The move is aimed at enhancing security and reducing risks associated with phishing attacks and SIM-swapping fraud used by cybercriminals to hijack users’ phone numbers and steal verification codes.
Currently, Gmail users receive a six-digit authentication code via SMS which must be entered after providing the correct password when logging into a Google account. It was the first form of 2FA introduced by the search giant in 2011, and more secure options have been introduced in subsequent years.
Once the company phases out support for SMS-based 2FA codes, Gmail users will be presented with a QR code. The user has to scan it using the camera app on their smartphone. The company believes that these QR codes will offer a more secure way to authenticate a user, after the correct password has been submitted.
“SMS codes are a source of heightened risk for users. We're pleased to introduce an innovative new approach to shrink the surface area for attackers and keep users safe from malicious activity,” Gmail spokesperson Ross Richendrfer said.
Like the social media platform X, Google is also looking to crack down on SMS fraud, where scammers prompt companies to send texts to specific numbers to receive money when each message is delivered.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
