Jakarta, IndonesiaSentinel.com — As of September 30, 2024, Google will stop allowing users to log into third-party apps using their Google usernames and passwords, in response to increasing cases of online fraud involving stolen money and identities.
Once this policy takes effect, users will no longer be able to log into third-party apps by sharing their Google login credentials. Syncing Google accounts to other devices that require users to share usernames and passwords will also be discontinued.
In an official blog post, Google explained that logging into third-party apps using Google credentials raises security risks, as users have to share sensitive login information. Cybercriminals have been exploiting this method to gain unauthorized access to users’ Google accounts.
The Switch to OAuth Authorization
To enhance security, Google encourages users to adopt OAuth (Open Authorization), a method that allows third-party apps to access user data without requiring them to share their usernames and passwords.
Google has been phasing out access to third-party apps, known as “Less Secure Apps” (LSA), in a multi-stage process since 2019. These apps typically request access via passwords to services like Gmail, Google Calendar, and Contacts through protocols like IMAP, SMTP, and POP.
The final shutdown of LSA access will take place on September 30, 2024. From that point on, all Google Workspace accounts will require OAuth for login, and syncing with Google will no longer be possible using just a password.
What Should Users Do?
Outlook 2016 and Older Users: Google recommends switching to Microsoft 365 (formerly Office 365) or using newer versions of Outlook for Windows or Mac that support OAuth.
Other Email Clients: Users can add their Google accounts using IMAP with OAuth configuration.
iOS/macOS Users: If you’re logging in with just a password, you’ll need to re-add your Google account and use OAuth by selecting “Sign in with Google.”
How to Stop Google from Tracking Your Online Activity
For third-party apps that do not support OAuth, users will need to switch to apps that do or create a separate password for these applications without linking them to their Google accounts.
By enforcing these changes, Google aims to protect users from the increasing threats of cybercrime while promoting safer login methods for third-party applications.
(Ray)
