The era of using one simple password to log into your email account appears to be slowly coming to an end.

Years after Google first rolled out two-factor authentication (2FA), this more secure login method is on its way to becoming the standard for users of Gmail and co.

The system, which requires you to confirm on your phone that it's really you that is trying to log in, offers a second hurdle that renders it far more difficult for hackers to gain access to a person's email account.

Google has been calling on more and more users to activate this second step in addition to a secure password, and says this method is on track to make 150 million user accounts more secure by the end of the year - roughly 10% of total number of Gmail users.

How does two-factor authentication actually work?

When logging into a Google service - for example on a different computer or device than you normally use - you'll get a notification on your mobile phone once you've entered the password. You then confirm "Yes, it's me" with a quick tap.

To use this function, iOS users must have the Gmail app installed. For Android users, no app download is necessary.

Despite being greatly superior, two-factor authentication is still not yet the default login method and it won't be activated without your input.

If you don't want to use this login method, you can deactivate authentication in the security settings.

To do this, click on "Security" in the account settings and deactivate "Confirmation in two steps" under the item "Log in to Google."

No one will be forced to use 2FA, Google product manager Jeroen Kemperman says. But two-factor authentication is the best defence against data theft, he adds, noting that it's both free and easy, as well as more safe, as hackers would need both your mobile phone and password to get into your account.

 - dpa