|
Google Authenticator still syncs two-factor authentication secrets without E2EE. If you enable cloud syncing, this means: 1️⃣ Google can read the secrets and generate one-time passwords for your accounts #Privacy #privacymatters #CyberSecurity #infosec 24 comments
 @PC_Fluesterer @mysk I'm with you here. I tried to explain this to our HR department that there exist people who want to and can live without #Google. Got weird responses. @mysk Ahoj! @mysk Thank you very much! :D @mysk Again: Thank you very much! You helped me a lot! I am gonna watch the video later this day! Have a nice day! :blobcatcoffee:  @shadowwwind @mysk @schnaff I just tried to import from Google Authenticator to Aegis and it said root access was needed. I started going through the motions anyway, but it warned me Authenticator now encrypts local storage, so it may not be accessible. I cancelled, and will continue manually moving stuff over, which I was already in the middle of doing.  @mysk @schnaff   @mysk To answer my own question: looked into BitWarden's capabilities and they seem to be a great alternative for Google Authenticator. Thanks for raising awareness! Curious if you or others know of worthwhile options for iOS? 3⭐️ rating for FreeOTP on iOS, no import or export support. Leaves me debating upgrading to paid BitWarden. Thx for any input!  |
Gregory's Server
@mysk
I for one would NEVER use #Google Auth. I would NEVER use Google for anything relevant for #security or #privacy. I would NEVER use Google at all. I refuse to correspond to gmail. And so forth.