Besides appearing in the top-right corner of every Google app, your avatar is most prominently used for Gmail. A new “Google Illustrations” tool lets you find and build a custom profile picture.
Expand Expanding Close
Where supported, “Sign in with Google” is a convenient way to log in to third-party services without having to keep track of different passwords. Google is now consolidating its sign-in offerings, which includes the new “One Tap,” under “Google Identity Services.”
Expand Expanding Close
For the past few years, Google has aggressively encouraged adoption of two-factor authentication (2FA) — or 2-Step Verification (2SV) as the company refers to it. This includes physical security keys that plug in over USB, while it also offers phone security keys. The latest effort turns Chrome for Android into a security key for Google Account sign-in.
Expand Expanding Close
Given the service-reliant nature, Google support for Android encompasses multiple layers. One such way is controlling Account access, and Google next month is ending sign-in support for very old versions of Android.
Expand Expanding Close
SMS is widely regarded as an insecure form of two-factor authentication, and another example of this has just emerged. A carrier looks to be injecting ads into the Google verification code used to sign in to services like Gmail.
Expand Expanding Close
Kicked off by I/O 2021, Google has been making a big privacy and security push this week. The Google My Activity page is now adding extra password verification before it shows all your account usage and interactions.
Expand Expanding Close
At I/O 2021 on Tuesday, Google spent part of the keynote talking about privacy and security. It’s following that up with a prominent “We protect your privacy” message in Gmail and Google Photos.
Expand Expanding Close
If you’re not using security keys, the Google Prompt is the next best two-factor authentication method to protect accounts. Google is now updating the Prompt’s Android UI with a much-needed dark theme.
Expand Expanding Close
October is National Cybersecurity Awareness month, with Google yesterday highlighting what Chrome is doing to protect user privacy and security. Today, the company announced a Google Assistant guest mode and in-app critical security alerts.
Expand Expanding Close
Google last May introduced auto-delete controls where your history and activity information is removed after 3 or 18 months. The company today is making this the default behavior across key settings for new users.
Google in recent months has expanded and simplified 2-step verification across first-party services. Security keys for Google Accounts can now be enrolled on Android and macOS.
Last year, Google announced that all Android 7+ devices can be used as two-factor authentication when signing into Gmail, Drive, and other first-party services. Most modern iPhones can now be used as a built-in phone security key for Google apps.
When most people think of web browsers, the usual suspects come to mind — Chrome, Firefox, Edge, Opera, etc. — but over the history of the internet, far more browsers have been created. Recently, people who use some Linux-specific browsers, including Falkon, reportedly found themselves blocked from logging in to their Google Accounts, preventing the use of services like Gmail.
Before today, your Gmail and Google Account profile images could be set independently of each other. Most people might have not been aware of this distinction, and Google is now combining them.
Originally announced as a Chrome Extension, Google is expanding and integrating Password Checkup across two key products. This feature, which checks the strength and security of your saved credentials, is coming to the Google Account’s built-in password manager and the Chrome browser.
Back in March, Chrome introduced a “Sync and Google services” section to bring together all Google-related browser preferences. Chrome for Android now has a shortcut to those settings right on the New Tab page.
Announced at I/O 2019 amid a slew of other privacy commitments, Google Nest is starting the Nest to Google Account migration. An update to the Nest for Android and iOS clients today let you transition, with security and seamless integrations touted as advantages.
To take full advantage of Google services, Web & App Activity and Location History often have to be enabled on an account and device. At the same time, the company has been working to give end users more control over their privacy, and today is introducing an auto-delete feature.
The best way to protect online accounts is with a security key that ensures you’re the one signing in. However, enterprise users still have legacy systems like Internet Explorer or remote desktops that don’t support the new log-in method. Google now has security codes created using security keys for those scenarios.
Google today alerted G Suite admins about two incidents where users’ passwords were improperly stored. This security issue only impacts paid Google accounts and free consumers are not affected.
Given how much of people’s lives are now online, security is of paramount importance. New research from Google this week shows how even adding a recovery phone number to your Account can do a great deal to prevent hijackings.
At I/O 2019, Google announced that moving forward its smart home products would be branded under “Nest.” The Home Hub became the Nest Hub, while the first product from this initiative is the Nest Hub Max. Meanwhile, Google confirmed that Home speakers will get Nest branding in the future, while Nest Accounts will be migrated to Google Accounts to address recent security issues.
For the past several months, Nest has been plagued with stories about its cameras getting “hacked.” The underlying issue is bad password management and reuse, with Google encouraging 2FA and actively reseting compromised passwords. A new report today reveals that Nest accounts could eventually use Google log-ins.
Last week at Cloud Next 2019, Google announced that all Android 7.0+ devices can serve as security keys. However, the reality is that most people do not use 2FA, and other methods are susceptible to man-in-the-middle attacks. Google is now working to counter MITM attacks by blocking sign-ins from embedded browser frameworks.
