Google has rolled out a critical Chrome security update aimed at protecting the browser’s 3 billion users from stolen and compromised passwords. This comes amid a surge in password-related cybercrime, with billions of credentials being leaked or sold on dark web forums.
New Automatic Password Fix Feature
In a May 20 announcement, Google confirmed a new automatic password update tool for Chrome. If the browser detects a compromised password during sign-in, the Google Password Manager will now prompt users with an option to automatically fix it. When supported by the website, a new strong password will be generated and saved automatically, removing the need for users to manually change credentials.
“When Chrome detects a compromised password during sign-in,” said Google product managers Ashima Arora and Chirag Desai, along with identity tech lead Eiji Kitamura, “Google Password Manager prompts the user with an option to fix it automatically.”
No More Hassle in Account Settings
This auto-fix feature eliminates the friction commonly associated with updating credentials. Users no longer need to dig through account settings or abandon the password reset process midway. The system simplifies the task and enhances security without extra effort from the user.
Building on Existing Security Features
Google says this upgrade builds on past improvements such as:
- Strong password generation during sign-ups
- Dark web breach checks in Password Manager
- The upcoming conversion of passwords to passkeys (not part of this update, but still in development)
Although Google is working to make passkeys the new standard, passwords still dominate today’s authentication methods. This update helps close that gap with smarter, easier password management for Chrome users.
