G Suite™ is one of the most popular productivity solutions for business users. Originally going by the name Google Apps, it arrived on the scene roughly a decade ago. It was brought on as a way to eliminate on-prem software such as Microsoft Exchange®, Office®, and Windows File Server. Now, with over five million businesses and millions of individual users, G Suite is a core business application. With the G Suite email functioning as a lynchpin for a user’s online IT resources, admins are highly interested in ensuring that their users’ G Suite accounts stay safe and secure. Today, we’re going to talk about how G Suite self-service password resets are done, and how to maintain password security.
G Suite Self-Service Password Resets and Phishing
We know that G Suite password resets are critical to security, but why? Well, this is exactly how hackers have been stealing identities for a long time now. They have figured out how to trick unsuspecting users with a well disguised email into entering their credentials on a site that looks like G Suite, but really isn’t. The site may look alarmingly similar to G Suite, but comes with a few seemingly undetectable differences; such as a slightly different address, for example. For users not attuned to these minute differences, the G Suite self-service password reset may result in stolen credentials.
These dupes are called phishing attacks, and while most users are already aware of them, they are still extraordinarily successful. As IT admins and end users get more savvy, the hackers’ techniques get better. Google reported in the span of March, 2016 – March, 2017 they identified approximately 12.4 million potential victims of phishing attacks. This cat and mouse game can be deadly for IT organizations.
IT admins have been warning users, training them with tools that simulate attacks, purchasing anti-malware and email security solutions, and doing the best they can to thwart this attack vector. All of these are a great start to protecting an organization against the threat of compromised credentials, but unfortunately they aren’t enough.
Losing a user’s credentials to a G Suite self-service password reset is a bad way to be compromised, but unfortunately there are very few solutions to this problem other than vigilance by end users. While Verizon reports that only 4% of people will click on any given phishing campaign, the report has shown that someone who has previously fallen trap to a phishing campaign will likely do so again.
The good news is that there is a new approach that can help you mitigate phishing attacks and the solution is simple: don’t change passwords on the web. And, by extension, you don’t need to worry about having your users click on links in emails that require them to enter their password. In fact, for password changes, you can start to tell your team to never click a link to change a password for their business accounts.
Maintaining Password Security with JumpCloud®
So, how do users change or update their passwords or do a G Suite password reset safely? They change the password on their Mac® laptop or desktop, for example, through the JumpCloud® Directory-as-a-Service® application. By changing their Mac system password, JumpCloud automatically updates the password on your web applications such as G Suite or Office 365™, cloud or on-prem servers (e.g. AWS®/span>), your file servers (NAS appliances, Samba file servers), and your WiFi network access. Because the change is done on the system itself, the process is much more secure. Potential phishers aren’t able to makeshift a website, because there is no website to imitate. Further security can be achieved with optional multi-factor authentication (MFA).
This variation in the approach to G Suite self-service password resets is game changing. IT admins no longer need to worry about their users discerning whether the site they are going to is really Google’s or a malicious copy. Beyond the value of dramatically reducing the chances of getting phished and increasing security, changing and controlling passwords on the laptop or desktop is highly convenient for the end users. IT admins no longer need to train users where to go to change passwords, you simply reset the Mac password in the JumpCloud app and it is propagated to the end user’s IT resources.
Demo JumpCloud G Suite Integration Now
If you would like to learn more about G Suite password management and how JumpCloud can help, sign up for a free account, your first ten users will be free forever. If you’d like to see how easy password management can really be for your team, go ahead and schedule a demo! Still have questions? Drop us a note, and our expert team will be happy to get you the answers you need.