New Gmail Security Rules: Change Your Passwords by Sept 30!
Published On: September 30, 2024
Google is introducing significant changes to Gmail's password and app security protocols starting September 30, 2024. These updates are part of a broader effort to enhance security for millions of Gmail users, particularly those using Google Workspace accounts.
The new rules aim to phase out support for "less secure apps," which have relied on username and password-based authentication. One of the major changes will affect third-party applications that currently use IMAP, POP, and Google Sync to access Gmail accounts. As of the new deadline, these applications will no longer be able to connect unless they adopt OAuth 2.0, which ensures that users' passwords are not directly shared with the app. Instead, OAuth 2.0 generates secure tokens for app access, making it much harder for hackers to intercept login credentials.
Google’s decision is driven by the increasing risks of account breaches via password-based logins, which have proven to be a weak point in online security. By making these changes mandatory for Gmail accounts connected to third-party services, Google aims to protect millions of users from potential hacks and data leaks. Moreover, the shift to OAuth 2.0 will give users more control over the data that apps can access, offering enhanced privacy and peace of mind when using external services to manage emails.
In addition to these security enhancements, Google is also improving features like Safe Browsing, which will now provide more robust protection by scanning emails for malware and other malicious content before they reach users' inboxes. These measures are part of Google's larger initiative to safeguard its users, especially those using Google Workspace accounts, by reducing the potential for unauthorized access.
For users of personal Gmail accounts, while these security changes won’t directly apply, it’s still recommended to review account security settings, enable two-factor authentication, and ensure that app permissions are up-to-date. These precautions can further help protect against phishing attempts and unauthorized access.
What you should do next
If you use Gmail with third-party apps or outdated software, it's essential to take action now. Check your settings and ensure that your apps support OAuth 2.0. If you're using older versions of email clients like Outlook 2016 or Thunderbird, update to a newer version or follow Google's guidelines to reconfigure your account.
Even if you use Gmail primarily on iOS or macOS, it's important to switch to “Sign in with Google” for enhanced security. These changes are crucial for preventing disruptions in your daily email access. Don’t wait until the last minute—updating your settings now will help you avoid potential access issues and keep your Gmail account secure.