Password stolen? Who cares! With Google's new authentication enhancements for Google Apps, domain owners now have a new option to make authentication more reliable by throwing your mobile device into the mix.
If the feature is activated, your password won't be good enough to log into your account. You need both your usual password, and a code that Google will SMS you after you try logging in. If that sounds super annoying to you, you will be happy to know that the feature can be avoided if you mark a computer as "trusted". This is a great feature that Google Apps users get for free -- and with pretty much no setup.
In order for someone to compromise an account (from an untrusted computer), they will need both the users password, and their cell phone -- a combination that surely won't happen very often.