 |
Google recommends users create a passcode for their accounts. Photo: Reuters . |
Most people still use passwords to log in to their Google accounts, as well as their Gmail accounts. Customers only change their passwords when they lose them or are hacked.
This is a worrying fact. Many users are afraid to change their Gmail password because they have “used it for 5 years and have never been hacked”. However, Forbes believes that with the current cybersecurity situation, it is only a matter of time.
“More than 60% of U.S. consumers have felt that phishing scams have increased in the past year, and one-third have personally experienced a data breach,” said Evan Kotsovinos, VP of Security and Safety at Google. He and other top security experts at the company are calling for a shift away from passwords, which are difficult to manage and easy targets for phishing attacks.
The company is facing a wave of serious cyber attacks targeting Gmail, especially from hackers using advanced AI tools. Google officially warned users to respond and handle within 7 days to prevent hackers from accessing and using it.
The world's largest search engine recommends changing your Gmail password now to a passkey, which is more manageable and secure. "We want to move beyond the era of passwords while still making the login process as simple as possible," Kotsovinos said.
Passcodes are anti-phishing and allow you to log in with your face or fingerprint, experts explain. When combined with a Google account, users can access their favorite websites and apps, reducing the number of accounts you need to manage.
“Each passcode consists of two parts,” explains Steve Won, 1Password’s product manager. “A unique public key, which is generated and stored on the company’s servers. The other key is private, which is stored on the user’s device.”
Think of the public key as a lock that everyone can see, but only someone with a private key can open it. The system sends a request, and only the person who understands and deciphers it can continue logging in. “The code is virtually impossible for hackers to guess or intercept, because the keys are randomly generated and never shared during the login process,” Won said.
As Forbes puts it, passcodes are a strong default form of security that is resistant to most phishing attacks and incredibly easy to use. Bad guys can’t simply guess passcodes, nor can they exploit lists of weak or reused passwords as is common. In fact, they can’t be stolen or exploited like leaked passwords.
The private key never leaves the device, so there is no opportunity for a brute force attack. It is also impossible for the user to create a weak key, as all keys are strong and secure by default, just as they are designed to be.
To switch from a password to a passkey, go to your Google Account Settings, select Security Settings, then select Passkeys. Click Create passkey and follow the instructions, then verify your identity with your fingerprint or facial recognition on your computer or phone.
Source: https://znews.vn/dat-lai-mat-khau-gmail-ngay-post1561127.html
Comment (0)