At the beginning of 2017, it is compulsory to use Google's physical security keys instead of passwords and one-time passwords. According to a report by KrebsonSecurity, the change was a major impact on the security of Google employee accounts.
The company claims that since the introduction of physical security, it does not find a report on a Google employee's work account. A corporate spokesperson from KrebsonSecurity said, "No report or confirmation account has been selected from Google's enforcement security keys."
