Overview
- Google will phase out SMS-based two-factor authentication for Gmail users and replace it with QR code scanning in the coming months.
- The change is intended to mitigate risks such as SIM swapping, phishing attacks, and SMS traffic pumping schemes that exploit the current system.
- QR codes are expected to reduce reliance on mobile carriers' security practices and eliminate the need for six-digit authentication codes.
- Google has emphasized that SMS authentication presents heightened risks, making this shift a step toward safer login methods.
- The company has not provided an exact timeline for the rollout but confirmed the transition will begin soon as part of broader security updates.