Here's how it works. When you enable 2SV in Gmail, it will no longer let you sign in with just your email address and password. It will prompt you for a special one-time use code. Google can send it to you in a text message, call you and read it to you, or you can use the Google Authenticator app to securely generate one yourself on your phone or tablet.
Even fell victim to a phishing attack and a hacker did get their hands on your Gmail password, that person would also have to steal the phone or tablet you run Authenticator on, or hijack your phone's SIM card and intercept your calls and text messages (which happens, though it's fairly uncommon). Without a way to complete that second step, an attacker can't gain access to your inbox.
Enabling two-step verification is one of the best ways you can protect yourself. It's incredibly easy to set up and only takes a minute or two to do. Google will even walk you through the entire process.
So why aren't more people doing it? The most commonly cited reasons are that it's too hard to set up. Some worry about potential privacy issues. In 2018, however, there's no longer a good reason to leave two-step verification turned off.
You've been reading about new breaches day in and day out for several years now. One simple way to make sure you stay safe when those breaches happen? Turn on two-step verification.
The original article was published in Forbes.
More about: #gmail