Google will gradually phase out SMS codes for two-factor authentication in Gmail and replace them with QR codes. This should reduce the number of SMS-related fraudulent schemes and improve account security.
Currently, SMS codes not only help to confirm the user’s identity, but also prevent the mass creation of fake accounts for sending spam and malicious files. However, this method is far from ideal: fraudsters can trick the account owner into giving the code or intercept the message. Security also depends on the mobile operator and its protection against SIM card substitution.
In addition, the rejection of SMS will help Google combat so-called traffic fraud. In this scheme, scammers make online services send a huge number of SMS to numbers they control, and receive money for each message delivered.
After switching to the new system, Gmail will send the user a QR code instead of a code, which they simply need to scan with a smartphone camera. This will not only simplify the login process, but also make it more secure – fraudsters will no longer be able to intercept or trick the code.
