@thomasfuchs The Google Authenticator app does NOT do end-to-end encryption of your 2FA keys, so if you are using the sync option (which was shoved in your face as soon as you upgraded the app), then not only does Google have your passwords, but your 2FA codes as well.