Attacks no longer just look for a password: they directly attack the smartphone and the mechanisms that protect it. “Pixnapping” spotted by American researchers can thus steal a double authentication code in around thirty seconds, without the victim realizing it.
Login without password
This is a disaster scenario when we know that attacks targeting Google services have increased by 84% in one year. Sophisticated phishing, voice deepfakes and automated messaging campaigns — tools increasingly used by hackers — are making traditional protections less effective. Faced with this observation, Google recognizes the limits of traditional backup methods, such as recovery SMS or secondary email addresses. Notably ” if you lost your phone or didn’t update your emergency number “, admit Claire Forszt and Sriram Karra, from the search engine’s Identity and Engagement team. The message is to prepare the ground before the breakdown.
Among the new options, Restore Contacts allows you to designate up to ten trusted people (family, close friends) who can help verify your identity and unblock access to a compromised Gmail account. Google presents this option as “ a simple and safe way to turn to people you trust when other recovery solutions are not available “. Important: you must configure these contacts before losing access to your account.
Another new feature designed to reduce dependence on passwords: “Log in with phone number”. On Android, entering your number will bring up the associated accounts; after validation by the screen lock code, the user regains access without a password. Eugene Liderman, director of Android security and privacy, says the rollout is gradual “ worldwide “. The idea is to replace a fragile step (the password) with verification attached to the phone, provided the device is still under your control.
Google is also strengthening Messages, an app that serves as a frequent vector of malicious links: the messaging service will warn and block access to suspicious links until explicit confirmation. Key Verifier, the QR code verification tool, adds a layer to ensure that encrypted conversations are with the right person.
Finally, the web giant is focusing on education: the interactive game “Be Scam Ready” trains users to recognize scams, while partnerships (AARP, National Cybersecurity Alliance) aim to protect vulnerable populations, particularly seniors. Google is also hosting workshops during Cybersecurity Awareness Month.
🟣 To not miss any news on the WorldOfSoftware, subscribe on Google News and on our WhatsApp. And if you love us, .
