Gmail is dropping SMS authentication in favor of QR codes
Google is shaking up its two-factor authentication system in Gmail.
In an exchange with Forbes, a Google spokesperson confirmed that the company is working on ditching SMS text messages as a form of account authentication in Gmail. For years, this has been one of the main ways to gain access to a Gmail account; you just enter your phone number, and then enter the six-digit code Google sends as a text message.
But, as Google puts it, the company will work to replace those with QR codes "over the next few months."
You May Also Like
Google's stated reasons for doing this are understandable. SMS authentication is subject to phishing scams, and receiving a text message necessarily puts the end user's service carrier in the mix as a middleman. Carriers all have different security practices, and more importantly, are fallible. In other words, there are clear and obvious security risks to having users input codes received as text messages for account authentication, and QR codes would eliminate some of those risks.
There's no firm date for when this change will happen, but look out for it as we roll through 2025.
Topics Cybersecurity Google
Alex Perry is a tech reporter at Mashable who primarily covers video games and consumer tech. Alex has spent most of the last decade reviewing games, smartphones, headphones, and laptops, and he doesn’t plan on stopping anytime soon. He is also a Pisces, a cat lover, and a Kansas City sports fan. Alex can be found on Bluesky at yelix.bsky.social.
