Google has announced significant changes to its Gmail account security system, which could result in users losing access to their accounts if they fail to comply with the new terms within a specified deadline.
This decision comes as part of Google's ongoing battle against the rise of phishing attacks and fake messages that have become so sophisticated that they are difficult to distinguish from real messages.
Google has already begun sending personalized warnings to users via email and login messages, clearly warning them to update their security settings within 15 to 30 days.
These warnings are not just optional guidelines, but rather mandatory requirements that will prevent users from accessing their accounts when the specified time limit expires.
The core of these changes is the mandatory activation of two-step verification, which combines a traditional password with an additional layer of security. This may be a code sent via text message, authentication apps like Google Authenticator, or even physical security keys that can be activated at myaccount.google.com/security.
It doesn't stop at enabling two-factor authentication. It also requires abandoning legacy applications that don't support modern login systems and moving to the more secure OAuth 2.0 (secure token login) system that most modern applications rely on.
Google also urges users to update their recovery information, including their backup email address and phone number, a step that could save hours or days of trouble if they lose access to their account.
The danger of ignoring these updates lies in the fact that your Gmail account is no longer just a regular email account; it has become a gateway to many sensitive services, such as Google Docs, Android accounts, calendars, and even smart home devices. Hacking this account could, in effect, mean hacking your entire digital life.
These measures represent the second phase of Google's security plan, which began in October 2023 with stricter security requirements for major email senders and now extends to all users without exception.
In a world where cybercriminals' tactics are becoming increasingly sophisticated, Google appears determined to raise the bar for security to unprecedented levels, even if it means some temporary inconvenience for users.
