How to keep your account from getting hacked
open allWhat for: So that attackers cannot crack it.
A Google account lets you synchronize music, photos, contacts, and other data across devices. However, if it is hacked, criminals will gain access to all of that data. Another danger is that if someone has access to your Google account, they can remotely lock out any connected devices and erase all data from them.
Make sure that your account is protected by a strong password that complies with the following requirements:
- Is at least 8 characters long;
- Contains lowercase and uppercase letters, numbers, and special characters ($, @, etc.);
- Is not an actual word or easy-to-guess phrase;
- Is not the same as your passwords for any other accounts;
- Does not consist of information that strangers could easily find out (your name, date of birth, pet's name, and so forth — or those of your friends or relatives).
To change the password:
- Tap your profile picture in the upper right corner of the app main screen;
- Tap Manage your Google account;
- Scroll to the right until you get to the Security tab;
- Select Password;
- Enter your current password and tap Next;
- Enter a new strong password twice and tap Change password.
What for: So you definitely don’t get hacked.
You can increase the security of your Google account by enabling two-step verification. Every time you try to log in from a new device, the system will ask for a one-time code. A notification will be sent to all gadgets that are already logged in to that account. Thus, even if someone tries to hack your account, you will still be able to prevent them from logging in.
You can verify a login:
- Using a trusted device. When you try to log in to an account from an unknown device, a message will appear on the phone with your Google account asking you to verify the login. You’ll find a list of devices that have attempted to log in but are awaiting verification on the Settings page;
- Using a one-time code received by text or a phone call.
- Using your phone's built-in security key. Please note that embedded electronic keys are supported only by devices with iOS 10 or later. For them to work, the phone must be located next to your PC, and Bluetooth must be enabled on both devices.
To enable two-step verification using a trusted device:
- Tap your profile picture in the upper right corner of the app main screen;
- Select Manage your Google account;
- Scroll to the right until you get to the Security tab;
- Tap 2-Step Verification;
- Tap Get started;
- Enter your Google account password and tap Next;
- Check if your device can get prompts from Google and tap Continue;
- If you can’t find your device in the list, tap Don’t see your device? link and follow instructions;
- Google will suggest selecting a backup authentication method for in case your trusted device is unavailable. To choose to receive the code in a text or a phone call:
- Enter the phone number you want to use to receive the codes;
- Choose how you want to receive the code (Text message or Phone Call) and tap Submit;
- Enter the code that you received by text or voice message and tap Next;
- To select backup codes as an additional verification method:
- Tap Use a different method.
- Print out or download the backup codes.
- Tap Next;
- Tap Turn on.
If you do not want to use a trusted device, choose another method of receiving the code — by text or a phone call:
- Tap your profile picture in the upper right corner of the app main screen;
- In the Manage your Google account menu go to Sign in & security;
- Tap 2-Step Verification;
- Tap Get started;
- Enter your Google account password and tap Next;
- Tap Show more options;
- Enter the phone number that you want to use to receive SMS messages or phone calls with codes;
- Choose how you want to receive the code (Text message or voice call) and tap Next;
- Enter the code that you received by text or voice message and tap Next;
- Tap Turn on.
To enable two-step verification using a security key, in the same section:
- Tap 2-Step Verification;
- Tap Get started;
- Enter your Google account password and tap Next;
- Tap Show more options;
- Go to the Security key section with the name of your device and follow the instructions;
- Tap Done.
After you have enabled two-step verification, you can add several more login methods:
- Using backup codes that work even if your phone is not available.
- With the Google Authenticator app
Use a trusted device, an incoming phone call, a special app, a security key, or backup codes for secure additional verification; an attacker can use malware or a communication protocol vulnerability to intercept a text message with a one-time code.
How to prevent your personal data from being exposed
open allWhat for: So that strangers do not know too much about you.
Certain data — including your date of birth, gender, and phone number — from your account is visible to other users by default. To prevent strangers from viewing this information, deny access to it:
- Tap your profile picture in the upper right corner of the app main screen;
- Select Manage your Google account;
- Scroll to the right until you get to the People & sharing tab;
- Tap About me in the Choose what others see section;
- Select the fields containing information that you want to deny access to, and specify that only you can see it.
You may not limit access to certain data, such as photos and names.