Google has plans to introduce mandatory multifactor authentication (MFA). This is also known as two-factor authentication (2FA). Google plans to introduce this for 150 million users by the end of 2021 to better protect these users.
This decision has arisen because of the vulnerability of the traditional passwords, and the unwillingness of users to adopt MFA themselves. Google sees this addition as important since an added form of authentication can protect accounts from attackers drastically and avoids unauthorized persons getting access to your account. In traditional passwords, even the strongest ones can be compromised by attackers. This is why organizations nowadays invest in security controls.
In the last couple of years, Google has been busy innovating the technology behind these added authentication methods, and in the future, all Google accounts will get these settings as default. These methods include the Google Smart Lock app and Google Identity Services. With these methods, users can use their phones as their secondary authentication method. Google expects that threats will decrease by using these methods. Only Google accounts, that are appropriately configured, will get these additions. With appropriately configured, you can think about an attached phone number and/or a secondary email address. Most users do not use MFA, because an extra step is inconvenient, but in the long run, it is to their advantage.
Google is also busy with other initiatives to protect user data, like an Inactive Account Manager service, which deletes data from inactive accounts in certain circumstances. This will protect the digital legacy of users.
Source: https://www.computerweekly.com/news/252507788/Auto-enrolment-begins-for-Google-multi-factor-authentication
