At the Google I/O 2025 developers’ conference, Google introduced a major security enhancement for its Chrome browser: the ability to automatically replace weak or compromised passwords. This new feature will be integrated into Chrome’s built-in Password Manager and aims to simplify password management while improving user safety online.
With this update, Google Chrome will be able to identify weak, reused or breached passwords during the sign-in process. If such a password is detected, users will receive a prompt offering to automatically generate a stronger, more secure password. Upon receiving user consent, Chrome will not only create this new password but also update it directly on the website, removing the need for users to navigate complicated settings or reset pages.
The main goal of this feature is to encourage users to adopt better password practices without adding friction to their browsing experience. Many people are aware of the risks of using weak or repeated passwords, yet avoid changing them due to inconvenience. Google’s new approach removes this barrier by handling the process in the background, securely and efficiently.
Initially, this feature will only work on a limited number of supported websites, primarily those that comply with industry-standard protocols for secure credential management. However, Google has stated that it plans to expand this support over time, collaborating with more web services to make the feature widely accessible. Importantly, users remain in control throughout the process—Chrome will never make changes without explicit approval.
This initiative is part of Google’s broader mission to create a safer, more seamless internet experience. By automating routine but essential security practices, Chrome helps protect users from data breaches, phishing attacks, and account hijackings. It also aligns with industry efforts to phase out weak authentication methods in favour of more robust solutions.
Alongside this password upgrade, Google continues to push for the adoption of passkeys and biometric logins as part of a passwordless future. Until that vision is fully realised, features like automated password replacement serve as an important interim solution, making it easier for everyday users to stay protected.
The update is set to roll out globally later in 2025. Once available, Chrome users can expect a more proactive and supportive experience in managing their online credentials.
