Google will not let you log in if you have JavaScript disabled in your browser.



[ad_1]

Google today announced four new security features for securing Google Accounts. These four updates are intended to strengthen the protections before and after login users to the accounts, but also in the case of recovery after hacking.

According to Google 's Jonathan Skelker, the first of these protections that Google has deployed today comes into effect even before users begin to enter their username and password.

According to Skelker, Google will not allow users to log in to accounts when they disable JavaScript in their browser.

The reason is that Google uses JavaScript to run risk assessment controls on users accessing the login page. If JavaScript is disabled, it allows scammers to pass these controls undetected.

This change should only concern a very small number of users (about 0.01% according to Google data), but it will affect more robots, because many of them use browsers without where this feature is disabled for performance reasons.

google-javascript-login-alert.png

Image: Google

The second new security feature is malicious Android applications that users may have installed on their phones.

Google plans to extract data from Google Play Protect, a security scanner provided with the official Google Play Android app, and to list any malicious apps still installed on the Android smartphone of the user .

This information will appear in the Google Security Checkup section of a Google Account in the coming weeks, although the reporter believes that this information should be displayed on the user's screen just after it. he signed into his Google Account so he could act as quickly as possible. as possible.

google-malware-app-notification.png "height =" auto "width =" 370 "data-original =" https://zdnet3.cbsistatic.com/hub/i/r/2018/10/31/d8ff7b10-9a06 -4de8-9f30-82e0ac4facff / resize / 370xauto / 0dd20e0370e5c68ec32bddfafadd323294 / google-malware-app-notification.png

Image: Google

The third new feature is for third-party applications and websites for which a user has previously authorized access to Google Account data.

"We are already informing you when you have granted access to sensitive information or applications, such as Gmail data or your Google contacts, to third-party sites or apps." In the coming weeks, we'll expand this to the notification share all the data from your Google account, "explained Skelker today in a blog post.

Similar to the previous feature, Google plans to list all third-party apps and websites that have access to Google's data from a user in the "Security Check" section that will be coming soon. very crowded.

google-malicious-app-acces-data.png "height =" auto "width =" 370 "data-original =" https://zdnet4.cbsistatic.com/hub/i/r/2018/10/31/9e44e003 -91f7-4b04-a61d-c2aa86f9c42c / resize / 370xauto / d1479cba22ee51c9a6a07cff93ef41dc / google-malware-app-acces-acces-data.png

Image: Google

Last but not least is a security feature that Google plans to use after hacking an account. This feature is already operational and is a new set of procedures for finding access and securing compromised profiles again.

The procedure is described in detail in this Google Support page. In addition to helping users find account access, this will also help them to check the financial activity related to Google Pay accounts, to review new files added to Gmail or Drive, and to to secure other accounts with other services. that are linked to Google's main account.

This GIF shows an overview of how this new account recovery process works, without you having to fire one just to find out how it works.

Related coverage:

[ad_2]
Source link