Using Google Authenticator? Here's why you should get rid of it

[Chiefcrowe]

Still using Google Authenticator? Here's why you should get rid of it today

Google Authenticator is the granddaddy of two-factor authentication apps, but it's old and has some severe downsides.

www.zdnet.com

 

[ch33zw1z]

Ok, the article basically discusses the downsides to using an aauthenicator, but not necessarily security type issues.

I use both Google authenticator and Authy for 2FA.

I was also tempted to try out the Google Titan security key, but didn't want to spend $50 to play with it.

IMO, authenticator apps are the best balance for 2FA still. SMS isn't secure enough, emails can be cumbersome, and a security key kinda seems like a hassle.

 

[Chiefcrowe]

Well my takeaway from this is that google authenticator should have a way to back up your info if you need to reinstall the app, like others such as Duo Mobile do. It would be a huge pain if you need to log in and don't have access to your phone or the backup codes.

So I decided not to use it anymore and move to Authy.

Eventually I may try some kind of security key...

I completely agree that authenticator apps are the most ideal overall for 2FA. I'm surprised that some major sites still don't support them!!!