Stepping up the efforts to thwart phishing attacks, Google is considering using Android and iOS devices just like physical security keys. The tech giant has said that is going to implement the functionality of security keys like its own Titan Security Key into the mobile devices, where these devices will use Bluetooth to verify they are in close proximity to the device the user wants to log in to.
“Like physical security keys, this helps prevent a distant attacker from tricking you into approving a sign-in on their browser, giving us an added layer of security against the kind of ‘person in the middle’ attacks that can still work against SMS or Google Prompt,” said Google engineer Daniel Margolis in a blog post. He added that the company will be rolling out this tech in more places in the next two months.
The tech giant will also expand the types of Google Prompt challenges users may see in the case of unsuccessful and/or suspicious login attempts. Hence, there is going to be a new Google Prompt challenge for which users will need to connect their mobile devices to the same Wi-Fi network as the device they are trying to log into. Google also plans to ramp up phishing protections for its Google Suite applications like Docs, Sheets and Slides.