Google makes Gmail super secure - but not for most users

High-risk groups such as journalists, political leaders and campaigners can protect their account with Advanced Protection

Gmail app icon

Google has beefed up security for some Gmail users who may need more robust protection against threats. 

The Advanced Protection version of Gmail allows businesses at the biggest risk of targeted attacks to secure their mail against phishing and so on with an enhanced security key. This will protect emails and files stored on Drive from being accessed by non-Google services.

Google also said it will also block fraudulent account access with extra steps to verify it's the user trying to use the services rather than an imposter.

"To provide the strongest defense against phishing, Advanced Protection goes beyond traditional 2-Step Verification," the company explained. "You will need to sign into your account with a password and a physical Security Key. Other authentication factors, like codes sent via SMS or the Google Authenticator app, will no longer work."

Advertisement - Article continues below

Users in high-risk groups, such as journalists, business leaders, and political campaign teams that are likely to be hacked or attacked will only be able to access services such as Gmail and Google Photos from the Chrome browser and third-party apps that want to access Drive or other Google-services apps will be blocked.

iOS users won't be able to use Apple Mail, Contacts or Calendar with their Google account anymore, because those services don't support Security Keys. Instead, iPhone and iPad users will ned to download the Gmail, Inbox, or Google calendar apps on iOS.

If an Advanced Protection user ever loses access to their Security Keys, it'll take a lot longer to re-verify their identity -which could be days, Google said.

"A common way that hackers try to gain access to your account is by impersonating you and pretending they have been locked out of your account. To provide you with the strongest safeguards against this type of fraudulent account access, Advanced Protection adds extra steps to verify your identity," Google added. 

Anyone wishing to try the new service can buy two security keys - one for a mobile or tablet and one for a computer. They can be bought from Amazon for $25 (19) and $17.99 (14) respectively and then verified with Google before setting up the service.

Featured Resources

The IT Pro guide to Windows 10 migration

Everything you need to know for a successful transition

Download now

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Software-defined storage for dummies

Control storage costs, eliminate storage bottlenecks and solve storage management challenges

Download now

6 best practices for escaping ransomware

A complete guide to tackling ransomware attacks

Download now


email delivery

How to recover deleted emails in Gmail

20 Jun 2019

The IT Pro Podcast: Is the future multi-cloud?

29 Nov 2019
Business strategy

Google accused of ‘union busting’

26 Nov 2019

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

identity and access management (IAM)

44 million Microsoft customers found using compromised passwords

6 Dec 2019
Microsoft Azure

Microsoft, not Amazon, is going to win the cloud wars

30 Nov 2019
Microsoft Windows

This exploit could give users free Windows 7 updates beyond 2020

9 Dec 2019

Five signs that it’s time to retire IT kit

29 Nov 2019