Google is making another push on two-step verification for G Suite users by making its phone prompts the default login authentication method, displacing less secure methods like SMS and voice codes. The new policy takes effect the same day those prompts will start appearing on every device a user is signed into.
One of the methods Google account holders can use as a two-step verification procedure is a Google prompt — a server-fed yes/no screen sent to a device that user is already signed in on to verify a login attempt on a new device. Right now, users can add or remove devices that can receive them. But an upcoming change may take away that ability and push those prompts to every device, every time they need to perform a device login.
Hardware two-factor security keys are your safest bet for digital security, but they aren’t always easy to use. Up until now, using a two-factor hardware key with your Google account on iOS has been a bit of a pain, since it had to work through the Smart Lock app. But now, Google is making things much easier for iPhone and iPad users.
Password managers and 2FA apps are a personal affair. From cloud to self-hosting to offline, there are different approaches that try to balance out convenience and security, and every one of us will end up weighing those differently and picking what works for them. I used Enpass for several years, but for the past 18 months or so, I found myself gravitating toward Myki. Now the app has finally added Android 10's biometrics API in v1.27, which means it supports face unlock on the Pixel 4.
Five years after its acquisition of Authy, Twilio is now adding its ownership stamp on the app. The Play Store listing has been renamed to "Twilio Authy," though the launcher icon retains its simpler "Authy" name. The app also rolled out a new dark mode in its latest beta.
Keeping all your accounts secure is incredibly important, which is why we're running a series about how two-factor authentication can improve security, and how to enable 2FA on all your commonly-used accounts. An issue with legacy logins recently lead to hackers gaining access to 160,000 Nintendo Accounts, so it seems a good a time as any to explain how to set up two-factor authentication on Nintendo's online services.
Google started beefing up Nest account security last year after a string of embarrassing but entirely preventable hacks. Part of that effort was mandatory two-factor authentication (2FA) for logins starting in spring 2020, and the time has come. Google says all Nest users will begin seeing 2FA prompts this month.
This story was originally published and last updated .
Your online accounts (or at least, some of them) probably have troves of personal data in them, which is why hackers are constantly looking for ways to break into them. Passwords are usually their way in, as many people re-use passwords or choose common phrases. Even sharing the same password across two or more services can lead to trouble, as publicly-accessible password dumps become more common. Two-factor authentication, or 2FA for short, adds a second step to the login process that usually involves a temporary code or physical key — which makes it much harder for hackers to gain access to your accounts.
Adding two-factor authentication to your online accounts is a great way to stay secure, as it means an attacker will need more than just your password if they want to gain access to your data. Your Google account likely has a treasure trove of data, especially if you use Gmail, so it's probably one of the services you need to protect the most.
Both Android and iOS have a couple of solutions baked in to let apps automatically verify your phone number through a single-use passcode sent over SMS. Earlier this year, Apple proposed to standardize the format of these messages to make the process even more seamless. After joining hands with Apple over their contact-tracing tool, Google is now backing Apple's proposal to make SMS OTPs (one-time passcodes) a tiny bit more secure and easier to use.