Over 90 percent of Gmail users still don’t use two-factor authentication

swatkats

Keeping TE Alive!
Veteran
Jul 16, 2011
3,801
1,627
201
Hyderabad
A Google engineer revealed that more than 90 percent of active Gmail accounts don’t use two-factor authentication (2FA), reports The Register. Given the low uptake, The Registerasked Google software engineer Grzegorz Milka why 2FA isn’t mandatory for all Gmail accounts. Milka chalks it up to usability, adding that, “It’s about how many people would we drive out if we force them to use additional security.” The statistic was shared during a presentation at Usenix’s Enigma 2018 security conference in California.

Two-factor authentication is a security tool that requires a user’s password as well as an additional form of authorization. It adds another layer of security if your password has been stolen, or you use the same password for multiple websites. Google offers 2FA through a code that’s sent to your phone via text, voice call, mobile app, or via a Security Key that’s inserted into your computer’s USB port.

The Register
reports that more than 10 percent of users trying to enable Google’s 2FA encountered problems inputting an access code sent via SMS. Though 2FA provides meaningful protection and most sites offer 2FA, it does have limits, and methods like SMS authentication are easier to hack than something like a hardware token. Google has previously said it plans to upgrade its two-factor authentication tool after high-profile hacks, but this new service will be aimed at those needing extra security like politicians and executives.

Source: https://www.theverge.com/2018/1/23/16922500/gmail-users-two-factor-authentication-google
 

6pack

Well-Known Member
ex-Mod
Sep 19, 2005
7,506
1,524
302
What happens if the phone is stolen? How many people log out of their Gmail or Yahoo accounts in the phone?
 
  • Like
Reactions: Futureized

blr_p

Well-Known Member
Veteran
Apr 11, 2007
5,869
1,235
301
Even then the phone can be switched off in most cases by the guy who found it and you will be in a soup.
That is to do with getting the phone back and is a different issue.

Point being they can't get into your phone if its properly secured . So no need for 2FA with Gmail
 

Prole73

Well-Known Member
Adept
Jul 16, 2007
694
102
132
Mumbai
On Samsung there is SecureFolder (earlier MyKnox), keeping email, banking apps, pvt. info, etc. in SecureFolder may help ?