My Google Workspace account suspension

Posted by zenincognito 4 days ago

My Google Workspace account suspension(zencapital.substack.com)

369 points | 221 commentspage 6

jimbocyou 4 days ago|

OP triggered every possible red flags for suspicious account takeover in Google systems: deleting his recovery phone number, moving to another country and cellular provider. And then he gets surprised that the account is in 30 day cool down period??? I don't understand people sometimes.

zenincognito 4 days ago||

Have backup codes, Passkey, access to the said number, same laptop logged in, phone logged in, recovery email address access and nothing works...

Hackbraten 4 days ago||

They didn't willfully delete their recovery phone number. They tried to delete a shitty, known-broken 2FA mechanism after they had set up passkeys. Poor UX conflated the two things, so their recovery phone number ended up being deleted. This is 100% on Google.

Why the fuck would Google care in which country I live? It's a personal decision, and no corporation should have any say in this. They certainly don't have to flag an account for that, especially not if the account has 2FA enabled. This is on Google, too.

Your comment is victim blaming.

jimbocyou 4 days ago||

The problem is the rapid succession of changes to recovery phone number, country, cellular provider. There is no way to differentiate, at scale, between an account takeover currently in progress that needs to be stopped immediately to minimize damage, and a legit user deciding to change all his personal info at once.

30 day cool down period is a reasonable response, at scale.

Hackbraten 4 days ago||

> The problem is the rapid succession of changes to recovery phone number, country, cellular provider.

Aren't cellular providers inherently tied to the country they're in?

How do you move to another country without changing cellular providers at the same time?

jimbocyou 4 days ago|||

Of course you can keep your provider. It's called roaming, per OP story: "I am travelling to the UK and did not want to have *roaming* on my Australian phone."

For cheaper rates than roaming, typically you install a secondary eSIM for the country you're traveling. 99% modern phones support dual SIM for this reason

sfmike 4 days ago|||

you keep the old number forever and when travelling get a data sim only

shevy-java 4 days ago|

"Despite repeatedly explaining this, they ignored my assertions and continue to hold my email hostage."

Well, you have become the product here. That also happens by other "free" email providers too. I had this happen to me on inbox.lt; the guy demanded I use a smartphone to "prove" my identity. At that point I realised they want to connect this data to the account and sell it to others who are interested in that.

dagss 4 days ago||

Google Workspace isn't free, it is a paid for plan.

izacus 4 days ago|||

What do you add to humanity with this crappy take? Why are you shitty to the victim?

techteach00 4 days ago||

Because his honest and accurate diagnosis for why mega tech corps treat people inhumanely is the first step towards stopping it. In my opinion of course.

skeeter2020 4 days ago|||

1. they're wrong in their basic understanding; this is not a free product

2. the response is glib and lacks any empathy

3. there's no suggestions of possible action or resolution path

4. it is all opinion and low value / low effort

So even if it's an "honest and accurate diagnosis" that you agree with, it's not helpful, valuable or even comforting. We can do better.

walterbell 4 days ago|||

What's a good alternative to Google Workspace for SMB customers?

EvanAnderson 4 days ago|||

Microsoft 365 is a reasonable alternative. It's easy to buy and even tiny Customers can get a degree of real human (read: tier 1 is unhelpful contractors that you have to fight thru) support.

It's still repugnant to me, as compared to self-hosting, but I would never self-host for a greenfield SMB Customer today. The economics don't make sense and the talent pool of knowledgeable and reasonable sysadmins is dwindling by the day. (I wouldn't want to make a Customer so beholden to me if they were willing to pay for it.)

I miss being able to spin-up an on-prem email server on a box with reasonable hardware redundancy, some external USB disks to rotate for off-site backup, a UPS, a couple consumer-grade "business class" Internet connections, and a contracted "backup MX" to catch email in the event of an outage. It was a good enough for a lot of small SMBs who had a physical office, and was cheap.

herewulf 3 days ago|||

It's not. Support is about on par with Google for SMBs. I had a client get locked out of the admin panel for about 2 weeks before getting through with support.

The difference is that everyone's account kept working during that time so business kept on as usual, just the admins couldn't change anything.

The sad thing is I don't think anyone did anything unusual and it was some kind of bug of Microsoft's end.

EvanAnderson 3 days ago||

Good to know. I'm only dealing with 7 M365 tenants regularly and we have "break glass" accounts in each one (not tied to Customer's SSO, MFA unrelated to other admins, email address outside the tenant) to try to minimize the possibility of getting locked out, but I know it's always a possibility.

Moving the MX for the domain and limping along from backups is my worst-case contingency but given that there's no place other than M365 to restore the backups to it isn't a very good strategy.

Lihh27 4 days ago|||

The economics make perfect sense once "30 days of a suspended business email with no timely recourse" shows up as a line item. That USB disk and a UPS is looking pretty cheap right about now.

EvanAnderson 4 days ago||

OP really should be moving the MX somewhere else and going into disaster contingency mode. It sucks, but there's a level of survival there they should be willing to accept, at least temporarily.

samlinnfer 4 days ago|||

Office365?

zenincognito 4 days ago||

its $13 per month for a basic plan.