Google adds Password Checkup Chrome extension

Google has rolled out a new Chrome extension that will inform users if their passwords have been compromised.

The service, which was introduced as part of Google’s Safer Internet Day offerings, is called Password Checkup. The Chrome extension checks a person’s username and password against a list of four billion credentials that are known to be compromised. If a match occurs the extension will automatically warn the user and suggest the password in question be changed.

“We built Password Checkup so that no one, including Google, can learn your account details. To do this, we developed privacy-protecting techniques with the help of cryptography researchers at both Google and Stanford University,” Google said in a blog post.

The extension is now available.

Google has also implemented an additional layer of security called Cross Account Protection. This security service, which the company already supplies to Google accounts, is now being extended to apps and websites where people use Google Sign In to gain access. 

Websites that adopt the service will receive a notification if a user’s credentials have been exposed so the third-party site can implement the proper security protocols and notify the individual.

“We created Cross Account Protection by working closely with other major technology companies, like Adobe, and the standards community at the Internet Engineering Task Force (IETF) and OpenID Foundation to make this easy for all apps to implement,” Google said, adding that it is included by default for app developers using Firebase or Google Cloud Identity for Customers & Partners.