Google to Replace SMS-Based Two-Factor Authentication with QR Codes for Gmail Users
Google is planning to phase out SMS-based two-factor authentication (2FA) for Gmail and replace it with QR codes. According to a report by Forbes, this shift aims to enhance account security for all Gmail users by introducing a more secure and user-friendly authentication method.
Currently, Gmail users receive a six-digit code via SMS after entering their password when logging in from a new device. However, once SMS-based 2FA is retired, users will instead receive QR codes. These codes can be scanned using their smartphone’s camera app to complete the login process. Google says this method is more secure and will help protect users from potential risks.
Why Is Google Changing the Authentication Method?
Gmail spokesperson Ross Richendrfer explained that SMS codes pose significant security risks for Gmail users. He stated that Google is introducing this innovative approach to reduce vulnerabilities and protect users from malicious activity.
One of the main risks with SMS-based 2FA is that scammers can trick users into sharing their codes or use SIM-swapping techniques to hijack phone numbers. By replacing SMS with QR codes, Google aims to eliminate these issues and strengthen account security. This move mirrors steps taken by other platforms, like X (formerly Twitter), to combat SMS fraud.
What Are the Alternatives for Gmail Users?
In addition to QR codes, Google currently offers other authentication options. Users can receive security codes via phone call or tap a button to verify login attempts. It’s unclear if the phone call option will continue to be available alongside QR codes.
Furthermore, Gmail users can always rely on the Google Authenticator App for an extra layer of security. This app generates one-time codes without needing SMS or an internet connection, making it another reliable option for account protection.
