Google Chrome will fix your hacked passwords with one tap

The AI-powered feature arrives first on Chrome for Android in the US, the online giant says at its Google I/O developers conference.

Stephen Shankland Former Principal Writer
Stephen Shankland worked at CNET from 1998 to 2024 and wrote about processors, digital photography, AI, quantum computing, computer science, materials science, supercomputers, drones, browsers, 3D printing, USB, and new computing technology in general. He has a soft spot in his heart for standards groups and I/O interfaces. His first big scoop was about radioactive cat poop.
Expertise Processors | Semiconductors | Web browsers | Quantum computing | Supercomputers | AI | 3D printing | Drones | Computer science | Physics | Programming | Materials science | USB | UWB | Android | Digital photography | Science Credentials
  • Shankland covered the tech industry for more than 25 years and was a science writer for five years before that. He has deep expertise in microprocessors, digital photography, computer hardware and software, internet standards, web technology, and more.
Stephen Shankland
2 min read

Chrome is automating password updates if it finds one of yours has been hacked.

Stephen Shankland/CNET

Google Chrome is getting a new ability to fix your hacked password fast. It's standard for web browsers to warn you when your password is found on a list of hacked passwords, but now Google's browser also will be able to fix it with a  tap of a button.

When Google spots a vulnerable password, Google Assistant will offer a "change password" button, Google announced at its Google I/O developers conference on Tuesday. It will arrive in Chrome on Android in the United States but will spread to other browsers and regions later. It only works on Twitter and a "small number" of other sites initially, and you need to enable Chrome password sync.

The password change feature relies on Google's Duplex technology, an AI-powered service that fills out forms and takes other automated actions on the web. 

The feature reflects the growing importance of password managers. We're bad at creating hard-to-crack passwords and even worse at remembering them, but password managers handle the grunt work. They're built into operating systems and browsers, but many people use standalone password managers that work across different browsers.

Website developers aren't required to change their sites to take advantage of the feature, Google said in a statement. "We'll be in touch with developers as we continue to expand the feature."

Ultimately, Google hopes to banish passwords altogether.

"The single most common security vulnerability today is still bad passwords," said Jen Fitzpatrick, a Google senior vice president, at Google I/O. "Ultimately, we're on a mission to create a password-free future. ... We want to free everyone from password pain."