The Chrome extension sits quietly in Google's browser but it springs into action when it detects that a username and password being used to login to an online service - it doesn't have to be a Google one - has been compromised. Using passwords that have been compromised is a time bomb waiting to go off, and this is a pretty secure way to check whether you have any of those. "But we want to provide you with the same data breach protections for your accounts, beyond just Google apps and sites", a new post to Google's The Keyword blog notes. If not, you'll get a message that one ore more of your passwords are no longer safe due to a data breach, and you'll be prompted to change them.
The search giant said it designed Password Checkup to never reveal your personal information to Google. Those partners who use Google sign-on need to implement Cross Account Protection themselves, but when they do, they'll receive information from Google in the event that your account has been compromised. The Chrome extension will automatically check whether you password is compromised in a data breach or not.
For those concerned about privacy, Google says not to worry. Now as soon as you sign-in using unsafe credentials then the Chrome extension will send an alert 4.
Given that literal billions of usernames and passwords have been breached over recent years it's likely that many of us have some user credentials out there that are in the hands of bad people.
Once installed, the Password Checkup tool will monitor all your logins and trigger warnings once a positive match comes up. We're getting this effort off the ground now, and developers can get started today to improve security for everyone, " Google noted.
Google says it will continue to tweak the tool over time, improving site compatibility and the detection of user-name/password fields.
Google says it only shares if the event happened and necessary information like whether someone hijacked your account or if you are required to log in again because of suspicious activity. This is why the company has created its new Cross Account Protection feature.