Google Pushes 2 Billion Gmail Users to Adopt Passkeys Over Passwords

Google urges 2 billion Gmail users to switch from passwords to passkeys as cyber attacks surge.

Jun 16, 2025

2 min read

Our editorial process is built on human expertise, ensuring that every article is reliable and trustworthy. AI helps us shape our content to be as accurate and engaging as possible.
Learn more about our commitment to integrity in our Code of Ethics.

Key Takeaways

Google urges 2B Gmail users to adopt passkeys, setting a new default and pushing hard on password-free security.
Cyberattacks rose 33% last year, costing $16B—fueling Google’s biggest security push to date.
Passkeys stop phishing, keylogging, and password reuse by using on-device biometrics instead of typed credentials.

Google is making its biggest security push yet. The company strongly urges its 2 billion Gmail users to switch passwords to passkeys. While not mandating immediate changes, Google has made passkeys the default authentication method. They’ve also set a hard deadline for third-party apps. The FBI reported cyber attacks jumped 33% last year. Those attacks cost over $16 billion in damages. Google’s response shows how seriously Big Tech is taking the password problem affecting every internet user.

Why Your “StrongPassword123!” Isn’t Strong Enough

Here’s the uncomfortable truth about that password you created. You’re proud of it because it has numbers AND symbols. But hackers are laughing at it. Modern phishing attacks use AI to craft emails so convincing they’d fool your grandmother into handing over the family jewels, exposing just how weak our password security habits still are.

Google’s Evan Kotsovinos, VP of Privacy and Security, puts it bluntly. “Passkeys are phishing-resistant and can log you in simply with the method you use to unlock your device—no password required.”

The generational divide is real, though specific adoption numbers vary. Google’s research shows that younger users are more likely to adopt biometric authentication than older generations. Older users often stick with familiar password-plus-two-factor setups. One group sees the future. The other’s comfortable with what works—until it doesn’t.

Key security improvements with passkeys:

No typing means no keyloggers can steal credentials
Biometric data stays on your device, never transmitted
Phishing sites can’t trick you into entering fake credentials
Works across devices without password managers
Eliminates password reuse vulnerabilities

The Bottom Line

Your Gmail account holds more sensitive data than your wallet ever did. Banking alerts, work emails, password reset links for every other account you own—it’s all there. Google’s pushing passkeys because they work, not because they’re trendy. The choice is simple: upgrade your Gmail security practices now, or explain to your boss why you’re locked out of everything important after the next data breach.

Enable passkeys in your Google Account settings under Security > How you sign in to Google > Passkeys and security keys. Your future self will thank you.