Slashdot Mirror

← Back to Stories (view on slashdot.org)

Less Than 1 in 10 Gmail Users Enable Two-Factor Authentication (theregister.co.uk)

Posted by msmash on from the usability-vs-security dept.

It has been nearly seven years since Google introduced two-factor authentication for Gmail accounts, but virtually no one is using it. From a report: In a presentation at Usenix's Enigma 2018 security conference in California, Google software engineer Grzegorz Milka this week revealed that, right now, less than 10 per cent of active Google accounts use two-step authentication to lock down their services. He also said only about 12 per cent of Americans have a password manager to protect their accounts, according to a 2016 Pew study.

3 of 254 comments (clear)

  1. For obvious reasons ... by Anonymous Coward · · Score: 2, Interesting

    Less Than 1 in 10 Gmail Users Enable Two-Factor Authentication

    Because I refuse to give Google my cell phone number to text me, because there is no way in hell they need to be able to track me even further.

    That's a big old "hard no" there, chief.

    Google's 2FA is as much about them getting more information about you as it is your security.

  2. I used to, then stopped by Anonymous Coward · · Score: 5, Interesting

    I had 2FA enabled, then left my phone in an uber by accident and a subsequent passenger stole it. The emergency 2FA codes I'd printed out didn't work. In order to track and remotely disable my phone, I ended up having to use a computer which I'd thankfully left logged into gmail to disable 2FA for my account (which for some reason it allowed me to do without any 2FA code), after which I could do what needed doing. I haven't re-enabled it since because I realized that losing or breaking my phone is frankly more likely than having my password stolen, and losing my phone with 2FA enabled can be a disaster of its own (even if emergency codes work, what if I don't have them with me? And if I need to carry them with me whenever I stray more than an hour or so from home, that makes it much more likely that the emergency codes themselves could be lost or stolen.) As I learned after that incident, any other services you've tied into Google Authenticator 2FA also become a huge hassle to regain access to, because just installing Google Authenticator on your replacement phone won't cut it.

  3. Everyone Leads a Boring Life by Anonymous Coward · · Score: 2, Interesting

    Everyone thinks their secret box is more important than their neighbor's secret box.

    Guess what, all your emails are boring! I've been an SA since the 1990s and root on thousands of Unix servers dating back to SunOS-4, and no one has anything interesting in their emails.

    Stop inflating your egos by thinking everyone is after your special sauce. Unless you're connected to a politician or celebrity, no one gives the fattest rats posterior what you gotta say or what you're sending plaintext.