Most PRIVATE 2FA apps
Вставка
- Опубліковано 4 лип 2024
- 2FA is essential for securing your accounts, and one popular method is using an authenticator app. But some of the most well known authenticator apps are collecting more data about your activities than you may realize.
We dive into what kind of information they’re collecting, how to give these apps less information when you use them, and more private alternatives
00:00 Intro
00:38 How 2FA Apps Work
03:19 Authy
05:44 Microsoft Authenticator
08:23 Google Authenticator
10:14 FreeOTP
10:57 Aegis Authenticator
11:42 andOTP
12:04 2FAS
13:28 Tips for 2FA Privacy
15:53 Summary
You should have 2FA on your accounts wherever you can; and you can choose an option that doesn’t collect data about you.
By knowing which tech in our lives is tracking us and collecting our data, we can make more informed decisions about which products and services we decide to use.
Special thanks to the Mysk team for their awesome research!
/ mysk_co
Brought to you by NBTV team members: Reuben Yap, Lee Rennie, Sam Ettaro, Will Sandoval and Naomi Brockwell
Our other videos on 2FA:
2FA malware apps: • SCAM 2FA Apps!
How to use Security Keys: • How Security Keys work...
To support NBTV, visit:
www.nbtv.media/support
(tax-deductible in the US)
Visit our shop!
Shop.NBTV.media
Our eBook "Beginner's Introduction To Privacy:
amzn.to/3WDSfku
Beware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.
Visit the NBTV website:
nbtv.media
Watch this video on LBRY!
open.lbry.com/@NaomiBrockwell...
________________________________________________________________________
Here are a bunch of products I like and use. Using these links helps support the channel and future videos!
Recommended Books:
Beginner's Introduction To Privacy - Naomi Brockwell
amzn.to/3WDSfku
Permanent Record - Edward Snowden
amzn.to/305negc
What has the government done to our money - Rothbard
amzn.to/2KMzmcu
Extreme Privacy - Michael Bazzel (The best privacy book I've ever read)
amzn.to/3BLZ1gq
Digital version: inteltechniques.com/book7.html (non affiliate link)
No Place to Hide: Edward Snowden, the NSA, and the U.S. Surveillance State - Glenn Greenwald
amzn.to/2UQmJ4m
Some of my favorite products to help protect your privacy!
Brave browser: brave.com/nao076
Faraday bag (signal stopping, to protect your fob, credit card, computer, and phone)
amzn.to/3z02UiF
Data Blocker (if you're charging your phone in an unknown port, use this so that no data is transferred)
amzn.to/2SVh0J2
Camera tape (electrical tape is the best tape for covering phone and computer cameras)
amzn.to/3Xn8xBn
USB-C to ethernet adapter:
amzn.to/2lOVBoy
Privacy Screens (use your phone and computer in public? Keep your information safe!)
Computer: (Search for the size right for your computer)
MacBook Air 13" amzn.to/3VQvpZ7
HP/Dell/Acer/Asus/Lenovo 15.6" amzn.to/3KK1Oda
Lenovo Thinkpad/HP Elitebook/Dell 14" amzn.to/4enT2zq
Phone: (Search for the size for your phone, decide whether you want glass or plastic!)
Galaxy s24 - amzn.to/3VGgb8H
iPhone 15 - amzn.to/45vCd1h
Pixel 8 - amzn.to/3KFDuJF - Наука та технологія
I guess I shouldn't be surprised, but mofoer. Thank You for always creating useful/helpful content. But also explaining it in an easy and straightforward way.
As always, thanks for keeping me more informed!
Such a necessary video for people to watch in this digital age. Thank you!
Another fantastic and informative video, Naomi. Thank you!
Thank you kindly for this awesome 411 😊
Thanks for your good work Naomi .
great job with your video miss Naomi hope you stay amazing
An immense thank you for all the work you're doing❤Keep going!!
Oh! my goodness. So much info to absorb for an older gentleman but wait.. that little finishing skit made ma laugh out loud. Thanks Naomi Brockwell.
Thanks for staying til the end
Just switched from authy to aegis. Thanks!
I did and it took 2 days on and off to change every account over.
@@OH2023-cj9if how many account do you have? For me took 5 minutes
I was waiting for this video 🎉❤
You're doing great work! I've longed for a channel like this
Aegis had been my go-to choice. Glad it's among the best.
Glad you're liking the app!
Thanks Naomi - so thorough as always
That’s a great overview! I would have loved to see the iOS build in 2fa password keychain in your list.
Thank you very much for helping me out to find a good and private solution for all my 2FA Codes. I started following your videos 2 weeks ago and you really inspired me to care more about my personal privacy rights. e.g. to change my 2FA App and to change my Cloud Space and to check what is really going on, on my Phone, Desktop and other Devices.
This is great to hear!
excellent content... appreciate the efforts
🙏
Naomi is the woman of my dreams. Good vid.
Thanks Naomi.
love the vibrant colour suits you well
This is great! Thanks!
The Queen needs to give us a live.
great info thanks
Re: Authy, I don't think it's enough but they've at least updated their Privacy Notice with effect Aug 10: "We clarified that we do not sell your personal information to, or share your information with, third parties for cross-context behavior advertising."
Also I had trouble figuring out FreeOTP, or getting it to generate a token I could do 2FA with
Really nice vid.
Good keep up ❤
Thanks Asuka :D
Thanks.. Very enlightening video... I was suprised about some of the apps like authy..... Time to ditch that one..
Thanks for watching
Thank you for your constant focus on privacy. From a security perspective, I was disappointed that you even brought up a non-supported code base as an option for users. This video is not geared towards developers - but end-users who may or may not be slightly more than technically literate. Even serious developers often overlook security blemishes - and by advocating for a non-maintained code base you are opening them up to bad things down the road. Yes, I know you had a comment at the end about use at your own risk - but without the appropriate security background someone might not correctly understand what you are implying. Again though - thank you for your constant videos, and I watch regularly.
Thank you very much Naomi.
😊
Very few people give thoughts on privacy, if you are one, this video will make more sense
2FAS is sensible with open source + offline and google drive encrypted with hidden folder backup. Nowadays I use alongside it that ente auth as well.
Gave up on those famous... Adopted 2FAS open source with local backup and optional DRIVE cloud synch
The sad thing is we're using Google's (Alphabet) to learn about privacy. I remember when most things could be forgotten. Not anymore.
Thank you Naomi!!
microsoft 2fa is for me. dont mind the analytics. iam using the app for free anyway. they also have a good backup
Happy St. Patrick's Day, Naomi! ☘️
Happy St Pat's Day!
In the case of Authy 3:15 the generic info collected is necessary for the app to function. This info enables Authy to be used on multiple devices, this being one of the great back up features of Authy. If you drop your phone in the toilet you can still Authy on your tablet or desktop.
Yep that's a great benefit of Authy. Until then, Apple iphone+watch was the easiest way to have a 'backup' OTG generator if you drop your phone in the toilet.
I like this Channel.
This channel likes you too 💛
I know a lot of businesses and big companies have their employees use Microsoft Authenticator and I believe that is bc they need to track certain data do obvious reasons
what kind of obvious data? microsoft already offers has Intune as Mobile Device Management
Nooooooo. Thanks for letting us know about this.
Thank you for your Insight the authenticator issue has been a nightmare for me😢
God I LOVE ❤ this woman!
The best thing to do is to stop using your phone for this, if your phone get compromised it really doesn't matter how secure is the app you use.
Well, if you are paranoid or a business, yes. But using TOTP app is much more secure than not having 2fa at all. Hardware key is good if you are worried about tageted attacks.
@@mukkaar Hardware keys are useless when compromised. I use software TOTP with KeepassXC.
What I like about Authy is that you could back the database up and restore on the other iPhone. Was so convenient when I upgraded. Hopefully, their tracking is nothign sinister.
Microsoft authenticator works like a charm.
I have a question rgarding Microsoft Authenticator, specifically the "he clicked here, scrolled here" stuff.
Does it collect every finger taps and scrolI make all the time or just the ones i make while Microsoft Authenticator is open?
In terms of Google Authenticator, it probably isn't surprising. Security is a tide that floats all boats and Google benefits from more secure Google accounts giving them an incentive not to mess it up.
Microsoft is different because most people use MS Auth because they are forced to by work.
Not really. I use MS authenticator over Google because it feels more secure. Google Authenticator doesn't even have a native option for biometric to lock the app
On graphine OS, on a google pixel, you can just put the stupid MS Auth in a sandbox phone, use it for 20 seconds, then turn off the sandbox. A sandbox turning off is like a phone being destroyed. So that is NOT running in the background.
On a normal android you could also restrict the app's data usage permissions so that it doesn't have network access.
However in both this case and in grapheneos, as soon as you give it the "20 seconds access" it will send data about yourself.
The problem with ms authenticator is that in addition to totp codes it also has a 2fa feature that requires network access, which makes it terrible.
Raivo on Mac/iOS is open source.
So cute!!!❤
Thank your for your hard work. Please tell me your thoughts about CA AUTHENTICATOR and the possible ability for a company using this app to track employees.
Cant wait for Proton Pass to come out it has 2FA too since i cant trust the other apps that much but still i have to be careful of proton too u never know
Had been using authy for its sync feature across mobile and desktop... but they are stopping the development on desktop so I guess I will switch to Aegis now
Hey there, Free OTP doesn’t work with a well known VPN provider. So it may work with other apps but not all.
I have stopped using 2FA on my accounts after nearly losing a couple of important old accounts which had reset on me at the same time I changed to a new phone. The whole back- and forwards compatibility, security process and recovery is poorly thought out.
How do you synchronise across multiple devices without providing your servers with information?
did they had any comment regarding Apple's 2FA that is embedded in their keychain?
I'd like to know too, I don't think it's well known that Apple macOS and iOS takes care of this in the OS.
What about the one built in Dashlane?
I just spent an entire morning trying to access one of TWO licensed copies of Microsoft Word. In the painful and Byzantine path that Microsoft and Google set me on. It included a license fee for Microsoft Authenticator, and concluded with Microsoft's admonition to "try again tomorrow." I would wager that the average teenaged "hacker" could have donned its obligatory hoodie and broken the process in a couple of minutes. I, in contrast, probably stand a greater chance of breaking into one of Bill's Bunkers than of using Word anytime this month.
You can write your own in about seven lines of Ruby/Python.
aegis is the best authenticator
keepkey is essential... 2fa using sms, or google is risky & less secure in times.
Maybe new services need to apply for IANA ports so people can block them without hesitation. Need to be FDA approved :)
How about new Proton Pass in app 2FA stacks up with other open source 2FA?
I was considering using ProtonPass (and Bitwarden) for 2FA, but it becomes an "eggs in one basket" situation. If someone compromises your Proton account, they get access to everything: Your passwords and even your 2FA protections. Proton themselves even note: You should never use Proton Pass to secure your Proton Account using TOTP. Use a third-party authenticator app instead. For this reason, I'm looking into some third-party so one breech doesn't spill everything.
Thank you oh authenticated girl scout
Not sure if I missed it, but I didn't see any recommendation for a 2FA app.
so when smartphone A is dead or stolen i must resetting up the login synch and can use the key which had been displayed beside the qr-code right? will just test. no need to restart synching from scratch?
What are your thoughts on using the 2fa functions built into 1password coupled with a security key?
Not open-source, but 1password is probably the best closed-source option out there as far as I’ve heard. Techlore and The New Oil talk about them. Bitwarden is probably better if doing a direct comparison.
What about Apple’s 2FA?
I can understand why Authy stores that data with a useraccount. If you switch to another device (Like you bought a new phone) you don’t have to set up all the 2FA settings again. Just use the same phone number or email address, enter the password you set up and voila, your 2FAs are back.
But it’s not like Authy can do anything with that data, right?
First, that feature should be opt-in. Second, anyone with the token becomes you. So, yes. If they aren’t using end-to-end encryption to hide your data from themselves, they absolutely can do anything they want with your data.
So then when their systems get hacked you’re screwed. Man this is why we have no privacy, cause folks blindly accept what these companies ask of them and pretend it’s in their best interest. Perhaps the education system needs to pivot away from critical race theory and focus on helping y’all learn some critical thinking skills.
Not exactly on point, but I've heard that once you save something on Google Drive it is there forever. Even though you may delete the files from your Google Drive, Google stores all of that information. If that is correct, is there anyway to remove all of those old files you have since deleted and moved to a more secure location?
Everything stored in a cloud service is scanned by using law enforcement hash tables to see if it is a known file like a picture or video. Emails are scanned too.
Many people are caught each year.
Nothing is ever deleted.
Can't answer the root question, but if your cloud backup is encrypted before uploading, it's just random noise to Google.
What about YubiCos Authenticator?
I just use Aegis
What about bitwarden?
@VampyToast I agree. Otherwise, that kind of defeats the purpose of two-factor authentication. The idea is that both factors need to fail before someone can access your accounts. If both factors are tied to each other, then realistically, only one needs to fail.
So what should I use for ios then?
whats the website that lists the permissions and stuff thats shown in the video pls?
What about an authenticator based on DES128 which is an extended version of DES64
What about self-hosted passbolt?
Any information on Duo Mobile?
We can't have nice things. Oh, Authy, I had high hope for you.
I love your content, but I am loosing faith in the digital realm, the amount of hacks and privacy leaks recently is making me concerned. In Australia alone 4 major companies I have information with have have all been hacked and my personal data stolen...
Don' t lose faith. Presume that every company you give information to will eventually get hacked, and decide what information you want to give companies accordingly
First, LTT made mistakes. Second, LTT isn’t exactly a beacon of technological intelligence.
@@NaomiBrockwellTV lol... You don't have a choice 99% of the time.
After doing the 2fa amazon is still asking me for my id card and an recent bill.
I gave them my id but i dont have any bills to my name.
What shoud i do?
Just because Google does not currently do stuff does not mean they will change their mind... unless they have already all that they need...
Its amazing how tech just keeps recycling old tech and calling it new, its like lessons never learned, I have lived long enough to be in the days of dongles, (security keys), pain in the butt but they did the job
Bitwarden?
Random comment to support... Epic final of the video with all those viruses on the screen 😱🤯😂
Does this have anything to do with mail merge.
Naomi, could you tell me the top 5 most secure and private chat apps in the world? if you can also say about social networks please
ua-cam.com/video/rTPBqWzjuyo/v-deo.html
Thank you. Sent video link around the office so more folks know. Microsoft was probably easier for the IT dept. to implement. No issues there.
QUESTION - Microsoft authenticator (MA) only collects usage data for the account it is authorizing - right ?
Installing MA on my phone does not allow Microsoft to collect data about other apps - right ?
👍🏻
what about the 2fas ?
Are you on Linkin?
how can we import items from Microsoft authenticator to aegis?
Don't download an app at all, just use the embedded solution in macOS/iOS no?
What about gnome authenticator?
unless a 2fa authenticator is cross platform, including windows, it's not good enough
Kosher Cat Authenticator, if it existed, would DEFINITELY be at the bottom of the list of choices. For obvious reasons....
Where’s Raivo OTP?
hat if you lose your security key?
Is there an Apple like approach on Android to authenticate from just a click on the keyboard and verify via biometrics?
In terms of private and secure logins, Apple is also super convenient while doing so.
- Client side encrypted Password and 2FA manager
- Email Aliases
- (login with Apple)
Probs to Apple from a Pixel fanboy
Yes. Google had it first.
@@nilpo For 2FA I have to switch between my app I want to login and my 2FA App like Aegis or Google Authenticator. There is no button on the top of the keyboard like on iOS
@@maxmustermann7365 I'm not sure what button you are referring to. To change apps on iOS, you double tap the Home button. On Android, you press and hold the Recents button.
@@nilpo For Auto Fill with passwords and TOTP 2FA on iOS, once tapping on a login field, a toggle at the top of your keyboard will appear to automatically fill in your password AND TOTP whereas on android it’s only possible for passwords but not TOTP 2FA.
Combined with FaceID you have nothing else to do than to tap a button and look at your phone whereas on android you have to open an app, search for your entry and copy paste a 6 digit code.
=> Good password and 2FA habits are much more convenient on iOS
Hi I'm Ariful Islam leeton I'm software engineer and software development and website development
It's not true 2FA if you're running an authenticator app on the device you're using to log in. It is better to use a separate device for the authenticator app and keep it offline.
Like what ,yubi?
@@rainerrain9689 My point is that if you use an Authenticator app you should not install it on a device like your personal smartphone because it is always connected to the internet therefore more likely to get compromised. It is much more secure to install the app on a separate device and keep that device offline since no further connection is required to use the authenticator app.
You can use an old smartphone for the authenticator app.