Summary
- Google is planning to phase out SMS codes for user authentication, as it considers the method legacy and unsafe.
- The search engine giant will instead encourage users to employ alternatives such as QR codes, passkeys, or authenticator apps.
- The decision comes as SMS-based two-factor authentication (2FA) is prone to new phishing attacks.
- Such attacks steal SMS codes through SIM swapping, fake aliases, or AI tools.
- Users should switch to alternatives to avoid potential disruption of access to Gmail accounts.
- Two possible replacements include Google Authenticator and passkeys, the former of which requires downloading an app and scanning a QR code.
- Android and iOS users should ensure they have the latest security updates to avoid potential issues.
By Sayak Boral
Original Article