Under the new protocol, when users attempt to sign into their Google account from an unfamiliar device, they must complete a two-step verification process. After receiving the standard prompt asking if they are attempting to sign in, users must now provide fingerprint, face unlock, or PIN verification after tapping “Yes, it’s me.” The original sign-in details remain visible in the background during this process. The enhancement comes as part of Google’s broader security strategy, which has recently included the promotion of passkeys as the default login option for personal accounts.