Google has announced the refusal to use SMS messages to authenticate Gmail accounts by replacing them with a new method-checking through QR codes. Such a change is part of a strategy to improve the safety of service aimed at reducing the vulnerability of attacks and abuse.
According to Google representatives, including Ross Rivendfer, the use of SMS codes to confirm a person and prevent fraud is no longer safe. SMS messages are often victims of phishing attacks, and are vulnerable to manipulation by mobile operators. Unlike SMS, QR code technology is more resistant to such threats because it does not depend on mobile operators and provides protection against SIM-card replacement attacks.
One of the reasons for this decision is large-scale fraud, which has been popular with the use of SMS checks, such as "Traffic Pumping", in which the attackers manipulate the delivery of a large amount of SMS to profit. As a result, Google, together with experts, decided to give up SMS by providing users with other, safer authentication methods such as authentication applications or hardware.
Refusal to SMS will be an important step to enhance Gmail users' protection. Google promises step -by -step instructions and support for anyone who will switch to a new authentication system.
