A cutting-edge threat known as Pixnapping has the ability to illicitly take your two-factor authentication (2FA) code within a mere 30 seconds, all without your knowledge. This is a significantly hazardous variety of cyber attack. In response, Google has ramped up its security measures, which are specifically engineered to assist users in accessing their Gmail accounts should they find themselves locked out. Some common reasons for such occurrences include losing one’s device, forgetting their password, or falling prey to a malware attack.
There has been an 84% surge in attacks targeting Google apps such as Gmail over the previous year, as per Google’s own data. The most perilous security risk to users of Google’s apps is emails engineered to steal their passwords. This is where the feature of Account Recovery can prove instrumental. However, even Google itself concedes that Account Recovery may not always successfully facilitate access to a locked Gmail account. Claire Forszt and Sriram Karra, both of whom are part of Google’s Identity and Engagement team, express concerns over relying on Account Recovery to regain access to a locked Gmail account.
Google’s feature known as ‘Sign in with Mobile’ employs your phone number to log into your account. Forszt and Karra highlight the difficulties of recovering a locked Gmail account using a one-time SMS code, especially in situations where the user has lost their phone or failed to update their recovery phone number.
In order to tackle such issues, Google has introduced a fresh Recovery Contacts setting. This new feature empowers Gmail users to nominate family members or trusted contacts to help them regain access to their Gmail account. Forszt and Karra view this as a simple and secure solution to rely on trusted individuals when other recovery options are not feasible.
To implement this feature, it’s essential to set up Recovery Contacts before losing access to your account. Users can do this by visiting the Security tab on myaccount.google.com/security and following the directions to confirm their identity. This will guide them to a page where they can add Recovery contacts. Users can assign up to 10 trusted people who can help them regain access to their locked Gmail or Google app account.
Moreover, Google has rolled out a new mechanism for Android users to validate their identity and reclaim Gmail access solely using their mobile number. Google’s ‘Sign in with Mobile Number’ process is straightforward. Upon entering their phone number, users will be presented with accounts linked to that number. They can then select the account they wish to access and input their lockscreen passcode. The unique aspect of this feature is that it allows account access without a password.
Eugene Liderman, Google’s Director of Android Security and Privacy, informed that this feature would be introduced gradually across the globe.
What is the new threat called Pixnapping?
Pixnapping is a new form of cyber attack that can stealthily take your two-factor authentication (2FA) code within 30 seconds without your awareness.
What is Google’s response to rising threats to its apps?
In response to the rising threats, Google has enhanced its security measures with features like Account Recovery and Recovery Contacts setting, designed to help users regain access to their locked Gmail accounts.
How does ‘Sign in with Mobile Number’ feature work?
‘Sign in with Mobile Number’ is a new feature from Google that allows Android users to verify their identity and regain access to their Gmail accounts using their mobile number. The users can select the account linked to their number and enter their lockscreen passcode to access the account, even without a password.
