Google Boosts Cybersecurity with Security Key Requirement

Google Boosts Cybersecurity with Security Key Requirement

Google employees have successfully dodged phishing attempts for over a year thanks security keys and two-factor authentication.

One of the biggest ways companies are infiltrated by hackers is through phishing. Attackers craft an email that looks just like something you'd normally click on, like a bill or an email telling you to change your password but instead the user is giving their information away - making their account vulnerable.

Google seems to have solved this phishing problem with a $20 security key it requires all its employees to use.

None of Google's 85,000 employees have successfully been phished on their work accounts since it started requiring the extra security to log in, the company said.

"We have had no reported or confirmed account takeovers since implementing security keys at Google," the company told Business Insider.

Google took the security of their employee's accounts to the extreme. Usually when employees sign on using two-factor authentication, you put in your username and password and then enter a code that comes through a text or app. Google requires that employees insert a security key instead of the code, bolstering the security of the accounts.

In October, Google launched an advanced protection program involving security keys for people at the highest risk of being phished, including journalists, business leaders and activists. Google has worked with several industry groups, such as the FIDO Alliance, to develop security-key technology called U2F.

A 2016 Google study found that text-message or app-based two-factor authentication, sometimes called "one-time password," had an average failure rate of 3%, while the U2F or security-key approach had a 0% failure rate.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

Featured Cybersecurity

Webinars

New Products

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation. 3

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3