In order to better protect its business-oriented accounts from hackers, Google Workspace has stated that it will step up its security measures.
Google is launching a new review phase that will ask for more verification if an action is deemed “risky” in order to safeguard users from hijacking attacks, which “may have far-reaching effects for the account owner or the company it belongs to.”
A new “Verify it’s You” popup will ask for confirmation that you are the account holder if you — or a hacker — attempt to make a modification that could have long-lasting implications. This verification may include two-factor authentication (2FA).
Safety of Google Workspace
SAML accounts are unaffected by this increased security modification, the business is careful to emphasize, and only accounts that utilize Google as their identity provider are supported.
The new security measures are already being rolled out to traditional G Suite Basic and G Suite Business clients as well as admin and end users of Google Workspace.
Any questionable behavior will be kept track of and recorded in an audit that account administrators can access. There are no changes for end users other than perhaps a few extra pop-ups for verification.
We previously discussed Google’s commitment to safeguarding its users from cybersecurity attacks. Admin users now receive new notifications whenever “critical and sensitive” changes to their configurations are made, such as changes to the primary admin, the addition of SSO profiles, and password resets.
This update, which came about a month after client-side encryption was strengthened with better data transfer oversight to and from the EU, is undoubtedly one of several that the tech giant releases every year as it combats cybersecurity threats.