Get Started
Sep 15, 2023

Google Enhances Security for Workplace Users

Mountain View, California, USA - May 26, 2022: The new building at Google Bay View campus in Mountain View, California.

On August 23, 2023, Google announced that it will add new cybersecurity defense control to prevent attacks, specifically phishing attacks targeting Google Workplace users. The new measures are designed to prevent account takeover attempts and improve overall security.

Key features include:

Multi-Party Approval for Sensitive Actions:

Admins of the Google Workplace will require multi-party approval for critical actions. All this means that if an admin enforces a highly sensitive action, such as changing the two-factor authentication settings, another admin must approve and confirm the action. This will add an extra level of security when changes are being made.

Mandatory 2-Step Verification for Specific Admins:

Google plans to mandate 2FA for specific enterprise administrators. Administrator accounts that have been compromised can raise significant security issues, in which adding 2FA can result in a decrease of 50% in compromised accounts.

Google states, "Starting later this year, select administrator accounts of our resellers and largest enterprise customers will be required to add 2SV to their accounts to strengthen their security." It is important to note that 2SV stands for Two-Step Verification and is quite similar to 2FA.

Expanded AI-Powered Gmail Defenses:

With the help of artificial intelligence, Google will now be using it as a security defense, covering sensitive email actions such as message filtering and forwarding. This will assist in mitigating threats such as phishing attacks.

Expedited Log Export to Chronicle:

Google Workspace will now offer a faster and more efficient way to export logs to Chronicle, Google's cloud-based Security Operations Suite. This feature enables security teams and administrators to export Workspace logs more efficiently, improving response time to threats.

Essential Tools to Enhance User Privacy:

Google is also implementing tools such as the ability to remove explicit personal images and personally identifiable information from search results.

Overall, Google's new initiatives are part of the company's efforts to address data breaches more efficiently. By implementing these defense controls, Google aims to empower Workspace users to prevent, detect, and respond to such attacks before they cause harm.

Technology Insights

Best ways to support small business IT

Best ways to support small business IT

Small businesses form the backbone of our economy, contributing to job creation, innovation, and community...
Read More
Podcast: Microsoft Copilot

Podcast: Microsoft Copilot

[audio mp3="https://www.infiniwiz.com/wp-content/uploads/2024/08/Podcast-Microsoft-Copilot-New.mp3"][/audio]
Read More
What is PCI Compliance? Data Security for the Payment Card Industry

What is PCI Compliance? Data Security for the Payment Card Industry

PCI compliance is a must for any business that handles credit card payments. It’s a...
Read More
chevron-down linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram