pull down to refresh

20 sats \ 4 replies \ @NovaRift 19 Jan \ parent \ on: Even VPs at Blockstream are getting phished. Do not answer the phone. security

No, I don't use G Auth; I've heard it's dangerous as they don't encrypt keys. I use Aegis and Bitwarden. I have separated things so they don't get connected. Thanks.

write
preview
12 sats \ 3 replies \ @WeAreAllSatoshi 19 Jan

I think Google Authenticator is fine as long as you don’t enable the cloud sync feature or whatever it’s called. I haven’t don’t a thorough analysis of it, though

reply
0 sats \ 2 replies \ @NovaRift 19 Jan

But there isn't even a point connecting everything to one service when you have such better alternatives.

Read this :

https://www.keepersecurity.com/blog/2024/07/03/google-authenticator-vs-keeper/

Google Authenticator does not provide end-to-end encryption, which makes it susceptible to hackers. If there's a data breach or someone compromises your Google account, all your 2FA secrets will be unprotected.

reply
30 sats \ 1 reply \ @WeAreAllSatoshi 19 Jan

Yea I’m not making such a recommendation. I’m just speaking to the sync feature

reply
100 sats \ 0 replies \ @NovaRift 19 Jan

Gotcha! thanks.

reply