NEW Google Authenticator w/ Backup (should you use it?)
HTML-код
- Опубликовано: 5 июл 2024
- The latest update of the Google Authenticator app now allows you to backup your codes to your Google account so you don't lose them. But is this security feature something you SHOULD use? Here's what you need to know.
▶ Download Google Authenticator on iOS: apps.apple.com/us/app/google-...
▶ Download Google Authenticator on Android: play.google.com/store/apps/de...
▶ How to Use Yubico Authenticator: • Forget Google Authenti...
▶ How to Use a 2FA Security Key Instead: • Setup a 2FA Key for MA...
If you care about your personal security and privacy online, download my free security checklist here:
✅ Security Checklist: www.allthingssecured.com/secu...
🔹🔹🔹What You Should Watch Next🔹🔹🔹
We've got a lot of great privacy- and security-related content here on the All Things Secured RUclips channel (although we admit we're a bit biased). If you're wanting to increase your online cybersecurity, here's what's next:
✅ Change these 7 Facebook Privacy Settings NOW! • How to Change Your Fac...
✅ STOP Using VPNs! (here's why): • Don't Use a VPN...it's...
✅ Are spy apps safe? • DON'T USE MOBILE SPY A...
🔹🔹Support All Things Secured (Recommended Services)🔹🔹
If you enjoy this kind of practical security and privacy content, one of the best ways you can help support this channel is by using these affiliate links to our favorite products and services. When purchasing through these links, you not only get the best available deal, the companies will also pay us a small commission. Thank you for your support!
✅ Recommended Password Manager: www.allthingssecured.com/yt/1...
✅ Recommended Identity Monitoring: www.allthingssecured.com/try/...
✅ Recommended 2FA Security Key: www.allthingssecured.com/yt/y...
✅ Recommended Secure Email: www.allthingssecured.com/try/...
✅ Recommended VPN: www.allthingssecured.com/try/...
*********************
Video Timestamps
*********************
0:00 - Google Authenticator Now Does Backup Sync
0:21 - Authenticator Backup: Then vs Now
0:56 - How to Use Google Authenticator Offline
1:17 - Is Google Authenticator Backup Secure?
1:58 - Should You Still Use Google Authenticator?
*********************
Google has updated their popular Google Authenticator app for two-factor authentication so that you can now back up your 2FA codes to the cloud on your Google account. But are these codes encrypted? Is it a secure option? Here's what you need to know.
#2fa #googleauthenticator #cybersecurity - Наука
What do you think? Are you going to use the Google account sync feature? And if you'd like to learn more about using a 2FA security key (even more secure), watch this video tutorial: ruclips.net/video/fzUVrz0ixn8/видео.html
Why would you want to even CONSIDER this app when there are SO many better alternatives out there?
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
authenticator has stopped refreshing codes for me since the update. the wheel goes round and round and the codes stay the same and don't work when entered. Discovered this while trying to add a new account. doesn't seem like there is a solution either. There is some advice on the help forums, but it didn't help the person who tried it. loving this new version. not.
Hey! I have a question and id like to know your opinion:
So, firstly, i want a free vpn (windows and android) with really good security + good speeds. I have encountered a lot of them such as atlas vpn, hotspot shield, privado vpn, proton vpn, tunnel bear and windscribe. I used all of them except hide me (the one i liked more was proton and the worst hotspot shield cuz of ads on android and not trustable no logs policy). Out of these options which one is the best option for privacy?
Thanks!
Hi josh love the channel , just a quick question when setting up two yubikeys (one back up) do u have to set up both keys at same time ? Thanks buddy
Hi, thanks for the video. My question is, where you will find this backup on your e-mail?? or how would you recover the account in google authenticator?
My hosting account wants me to turn on 2Fa for my website end-users. They give me a choice between Authy, GA, or Nordpass. Since I back up my phone locally, I'm wondering if using GA as a 2Fa "service" for my website visitors would helping in Google SEO vs the other 2(Fa) options?
I just found your channel when I I got an ad for a parental spying app that allows you to listen in, and you’re literally the only person saying that the spy apps are a security risk
Question: my old phone has old Google authenticator app. Can I safely update that old app and codes are safe then simply export/transfer to my new phone that only has new Google app version? Old version has that gray looking clock face but new one has the colorful looking lines like a star. I have both phones but older app doesn't have a backup option or transfer option and I'm scared to update the app lol
Thx, great vid! If Im synced, where/how do I find my backup for my new phone as the old one is lost?
Switched to Aegis a long time ago because I wanted the offline/exportable backups. This is useful for those that don't want to jump through the hoops to move to a new app or shell out for physical keys though.
What about raivo or last pass
Thank you. But where can i enable/disable the Backup? I can not find it in the Authentificator App? 🤷🏻♂️
The latest version for Android does not have that option.
Pourquoi la zone de l’Afrique, précisément la côte d’Ivoire n’arrive pas à installer la nouvelle version de AUTHENTICATOR appl?
I didn’t know that the cloud at the top downloaded and saved automatically so I went into my profile like you mentioned and disabled it but I’m concerned where my information went now. What do I do? Do you have an email address? I have other questions too.
Hi ! What about Accounts that do not support any other Authenticator than Google's - like Nintendo Account ?
What do you think about using 1Password for both credentials and 2FA codes? I use Authy for the latter as I assume having both sets of data available in the same place isn’t a good idea?
You're introducing centralization into your security setup by only using 1Password for credentials and 2FA. Never be beholden to one app / service / company for security, you need segregation and preferably open-sourced where possible
How I generate all codes for all apps on Google authentication app? Please tell me Step by Step
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
I been sim swapped before and they hacked my google email. Wouldn’t that be a problem if my google authentication is there now they can access all my accounts which most have 3fa ???
It gives me a wrong code after restarting, please solve it. What should I do?💔💔💔💔
I use Microsoft Authenticator, is it good?
But if I use 2FA on my Google account, I can’t access the account when losing the phone, right?
Dear, I activated Google authenticator, now when I withdraw, it asks me to enter the code and key again, but none of them remember me, what to do?
Hi I keep getting this message in my Google authenticator "Syncing will continue when your device is online and you refresh your Authenticator codes"
I just can't figure out what is the issue. It would be great if you make a video addressing this issue.
Alot of people are having the same issue in Reddit but there is no solution to this.
Hey great video ! Iwas wondering: you can export your qr codes to multiple phones and then remove the online option and so you basically have multiple phones as recovery. It does work right ?
Yes, and then you can store that QR code safely as another backup.
@@AllThingsSecured And how would you do that? Do you need to write down for each password the google authentification code or is there a master password with which you could restore the entire account at once?
Always valuable, balanced evaluation & answers! Thanks Josh
Thanks, Stef!
Not necessarily. He didn't even DISCUSS the other alternative apps, like Aegis Authenticator (just one example), which allows you to download a fully encrypted JSON file of all your 2FA codes and store it in the secure location of your choice. He also didn't discuss using 2FA storage in Bitwarden (when hardened with a Yubikey) I get the feeling like he's now an agent of google. Not sure I can trust this guy anymore.
@@HeWhoIsWhoHeIs thats because thats not what the video is about. And he did mention alternatives
Theoretically, let's say I had cloud backup turned on for authenticator.
If someone figured out my Google password and accessed my Google account, they would then be able to access all of my accounts on the sites that the codes are for, no? Since they would be able to access the cloud backup of authenticator?
In which part of my Google account i can see those codes? I don't konw where they are 😢
There are out there better 2FA Authenticator apps that rely also on backup, so you are safe (as long as you remember your login account) if you lose your phone or it get stolen. And also they don't "spy" on you linking data from the account you set up. For example, Raivo for iOS devices or FreeOTP+ for Android.
What about I have no access to my Facebook account? How can I get the two authentication factors! Please help
Good afternoon sir, how to recover deleted account in google authenticator?
They came quite late with that solution, many people left for other reliable options because of the lack of backup.
Google Authentication nightmare. Now I can't access my accounts on my new phone because it keeps saying access my old phone that has a broken screen. Sighhh
So basically if I still have my Google email to the authenticator codes I used I can get my codes
How does Microsoft Authenticator compares with this now? Is it same tech?
Microsoft Authenticator requires users to send diagnostic data. Even before you can approve it the app will fingerprint your device and send the data to Microsoft.
@@brandonw1604 Diagnostic info wont consist personal identifiable info. I am concerned about encryption and transmission as he mentioned in the video.
@@RohitSurw it gives your device's unique ID and other information that should be kept private. I do believe that tests showed it sent no MFA information to Microsoft.
@@brandonw1604 in europe you can reject it
@@lussor1 In America if you reject it the app doesn't work. That's fun.
Aegis, Keepas, what other good FOSS and proprietary options there are where backups rarely get corrupted ?
Bitwarden (when hardened with Yubikey)
@@HeWhoIsWhoHeIs hmm sounds nice
@@regisegek4675 it is. Very! And rock solid. And with the yubikey you can put the really important 2FA codes on the yubikey itself. Just be sure to buy at least 2 of them so you have backups. If you lose your yubikey, you're screwed. I keep my primary yubikey on a titanium chain I got from Amazon for like $20. It's a typical ball chain, like you'd find with a set of dog tags, but made of titanium. Very light and very strong.
THANKS ❤️ for working For Us🙏 and Also....PLEASE ALSO MAKE A VIDEO ON VIRTUAL BANK ACCOUNTS.....😇
Thank your for the valuable information!
My pleasure, Tobias.
Hola buenas si borre las cuentas vinculadas de Google autenthicator, como podría recuperar gracias
Not sure how you recommend Authy but not Google Authenticator?
thats what i was thinking, Authy use this same sketchy technique... tough, i've been using authy for years and the cloud backup is actually real useful, on several devices, when you restore on a new phone, etc
You can turn off device sync on Authy and that's what I suggest people do. I didn't explicitly recommend Authy in this video, nor did I advise against Google Authenticator. I'm just trying to provide all the information so you can make your own informed decision.
@@AllThingsSecured Authy doesn't allow you to (easily) download your saved TOTP and Seed files etc. And it's not open-source and had a few data breaches...
can you please make a video about facebook Open PGP encryption ?
I use a Pixel and the GA update still isn't available for my phone. At first, I was annoyed that after 6+ months of badly delayed system updates, it seems Google can't even make a simple app that works on the Pixel. Now, of course, I understand Big-G was actually looking after my security, by protecting me from their garbage product. Bravo, Google!
Side load it
@@Whit3WolfXArcadia Definitely not going to sideload a security app. I just switched to Aegis.
As long as you don't save your passwords on Google, i don't really see the problem with this feature. 2FA codes are completely useless on their own if you don't have access to the username/password of the websites and/or services.
I hadn't thought about that. Interesting point.
the problem is that if someone gets access to your google account, they can recover passwords through your email and if they can also get your 2FA codes now, it's full access
@@minefox6071 They already have 2FA on Google account and I've set it up
Do you have an email I could ask questions?
DO you know that the authenticator isn't phoning Google though?
Given Google's business model (*YOU* are the product) my question about any Google product or service is always "How does it benefit Google?". With Google Authenticator for example, I would ask - does Google know/record when and how you use it? E.g. if I sign on to a website using 2FA and use Google Authenticar to generate the key, does Google know that on a given date/time, I generated a 2FA key (even if they don't know the value of trhe key) for this particular company? Because I don't know the answer, I don't use Google Authenticator, but I wouldn't stop anyone else using it if that's their preference.
That makes sense. Thanks for sharing.
So if you lose the device without backing up your secret key to the cloud then you lose access to whatever account you are authenticating? 😢
Same occurred to me
Yes, I lost over $1000 worth of games on an App I used 2FA for Ubisoft. It does happen. In this case I never got it back so kinda shy away from 2FA unless I have to (Sec admins now start your lectures to me lol.)
still not delete it yet??
Isn't this new update to link my google auth to my google account is risky? it only means that all my codes are stored in a cloud to my account which also means if someone hacks into my cloud!!! guess what happens next? My funds & stuff are gone, lmao.
Don't know. Doesn't matter that Google does some new addition. I always see them with suspicion.
I like to use Authy and I plan to buy a Yubico key, but thats a great feature from Google
Never buy one Yubikey. Always buy at LEAST two. I went with 4, one of which is in my safe deposit box at my bank (it's my Bitwarden hail mary). But 2 is the BARE minimum. And remember, whenever you change 1, you need to change all of them.
It's a hard pass from me. I simply don't trust Google, not for their security, but for their ethics.
F
Definitly
I get that. Thanks for sharing.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
@@AllThingsSecured I deleted account codes by mistake and I cannot open my accounts....How do I recover the codes?
oh, Google is catching up with MSFT Authenticator... lol.
People stuck in a web with no answer not that hard to work out
I can’t see cloud backup option on my google authenticator app.
You'll need to make sure that you've updated to the latest version first.
can i ask how to remove an old google authenticator? there is no remove or edit button.
I have the same problem. This new update doesn't seem worth it.
I hope someone here can help
I don't know what happened but the new update (new logo) deleted all my passwords.
D m officialcentethic1 he'll help you
@@thomasedison9047this is bullshit I been fine till this
2FAS is my go-to. It will do password-protected encrypted sync to G-Drive. Exporting seeds is easy enough, so I can back them up in more than one place. I would stay away from Authy, considering Twilio was breached, and they require a phone number.
What about the others?
@@timl998 Aegis is popular enough, and is a good application. Another good one is Authenticator Pro. I still won't use Google's authenticator. It is a lot better than it used to be, but I'm already happy with 2FAS.
My phone just updated and Authenticator has lost all my codes even with the backup.
Bummer. It's time to start over. Talk to your parents and see if they're willing to create another you.
If I change mobile how do I recover the codes in the Google Authenticator application to have them on the new mobile?
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
My Twitter Account is Logout without any Reason and not Login without any Reason. I go to help and put my information but he ask 15 words in username but my account username has 9 words. How I get my account?
@edwardgardner6052 who is vinethics?
but, authenticator app not properly working after update, cod is not change automatically after the time is up. 🤨
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
@@Raven-rw1vd Immediately after the code within the app expires, minimize the app and remove it from the background.
Then immediately open the app and see, that code will work.👍
Disabled sync on the cloud and exported 2FA codes to a QRCode image and printed it out. If I need to set up a new phone just need to scan this qr code. All offline, nothing on the cloud.
I didn't know you can do that, what do you mean? as in you printed a QR code for each account linked to google authenticator?
@@ElyesBoudhina No. It doesn't generate one qr code per 2fa code. It depends on how many codes you have on the app. I have 15 codes and the app generated 2 Qr codes for all my 15 codes. If I need to change my phone , I just need to scan these 2 qr codes to set up all codes in the new device.
@@thiag0f You are using Google authenticator and not some other app, right? Just to be sure.
What if someone gets unauthorized access to my google account? Is he able to get my 2FA codes?
Good question. I assume yes. But don't you use Google authenticator to also log into your Google account? Then no...
This is seriously unsafe.. Google Authenticator allows you to backup codes (offline) when you originally set it up. now someone can just have access to your email to hack everything. ridiculous.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
@@Raven-rw1vd might be a sync problem.
No chance. I'm running GrapheneOS and I use Aegis for 2FA and Bitwarden and I'm very happy with things. I also have Aegis backed up on my old phone and my wife's phone just in case.
Aegis is a great authenticator.
Good for you 👍🏻 You’ve got a great setup there, but it’s overkill and probably too complicated for most people.
personally i use MS authenticator. the ability to backup codes with the press of a button is so convenient and easy for me, and this is coming from someone who IS tech saavy
You couldn't pay me to use a public company's authenticator. It's Aegis or nothing
Glad you've found something you like!
Thank you sir
I prefer google authenticator than the others apps cause the backup code i restore it my self with QR code in my home on safe place
so that new option cloud backup i don't use it ever
I trust google for hight security level 🔒but also i trust proffesional hackers can access my account and destroy my entire life.💀
so I keep my QR code backup in my home that's the safest place.
I deleted account codes by mistake and I cannot open my accounts....How do I recover the codes?
@adamspen yes please
@adamspen how
Facebook must have me in their bin to constantly harass me on Security matters. Going on 4 years now. They are Constantly locking my account and telling me i need this or I need that. Very Frustrating.
They just locked me out FB
Pissed off
The problem is that after the update all my codes were automatically synchronized without asking me. Shit on Google.
@Johnson Yor Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Oh fucken great. That's just fucken great.
So now all my clients at work who just stupidly save their passwords into Chrome often without even knowing they're doing it, and without enabling 2FA on their Google account... will now also be backing up any 2FA codes associated with those accounts, to the same location? Awesome!
Fucking great....
So, you're saying you're happy about this update?
@@AllThingsSecured Idol, I believe Pharya is "sarcastically" thanking Google. But not sure though. 😂
OFC who will don't
Here's the thing it's better not to use it until they provide End to End Encryption
Maybe so. And for you did say definitely don’t use it. But your threat profile isn’t the same as everybody else’s.
Who the fuck cares, I'm glad its finally here. I don't plan on moving 50 codes to a new app
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
@@Raven-rw1vd go to settings and tap "time correction for codes" and then tap "sync now" it should work that way
IMO DO NOT NEED
pls don't use it. i lost ll my accounts....after my old phone broke i couldn't recover anything even using the same email and google account on the new phone...
Storing on the cloud is less secure than local
Then don’t do it.
@@AllThingsSecured I won’t be. Convenience comes at the cost of security and I’m not about to let google have access to accounts worth thousands. I have reinforced safes for backup devices and 2fa recovery keys.
THanks!!
I’m absolutely not a fan off this at all. I had issue few days ago where my phone was destroyed and had to reinstall all my 2FA codes. However, I’ve come across a blockchain based 2FA called Shield Protocol which requires no personal information and instead gives you a seed phrase which allows you to enter relevant services requiring 2FA codes and you can restore the application and retain all your service codes provided that you can recall your seed phrase. Absolutely brilliant service and I don’t think there’s other projects like this in the crypto space. Would love to hear your opinion on it!!
👍🏻
🙏
It's google, so hellllllll no.
Complex
How so?
@@AllThingsSecuredtotal bullshit I was been fine now this I'm locked out FB messenger cuz I need to do all this bullshit been trying dont work
Aegis authenticator is the best.
Yea, I've heard a lot of people use that.
@@AllThingsSecured it's stored codes on the phone and you can make a copy of backup code and you use it with multiple devices with your unique password. My opinion:
1- Yubikey
2- Aegis
3- Do not use any other than these two
Aegis,andotp,keepassdx best for your privacy and totally open source .... I love all
I moved away from Authy because they are EVIL. They don't let you migrate by giving the Seed QR Codes. I spent 2 days of mine manually migrating all my accounts.
Why does it have no reviews in the Google app store?
Never use anything by google.
or crApple, or MS
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
@@Raven-rw1vd check your time zone settings on your computer and your device
Too much ceremony
I don't care about if Google see it I am ok with this
Great!
For an exemple , I factory reset my phone and I was not able to recover my accounts and when I install the authentificator i automatically get the codes
And Google already know everything from me so I don't care
❤
Locked out of FB & messenger cuz this bullshit
good tutorial,but what a mess!
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Do you think now that Elon owns Google that it will become
Elon doesn't own google.
@@HeWhoIsWhoHeIs I'm throwing my damn phone away it never tells the truth anymore might as well get rid of it. You're right it turns out to be a hoax I'm fed up with all of it. Then we have to come to these guys to shut off the different things on our phone so it doesn't rip us off
1password and others have that for years and they are trustworthy.
Don't use your password manager for 2FA, you need segregation between these security functions
@@philthy941
It is useful but not mandatory. For important things, like the password manager, I am using the Yubikey. 😉
He is tested and trusted
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.
Hello, I have a problem with the Authenticator program. When I want to log in to my Discord account, I put the code, and the code appears to be wrong and incorrect. I am sure that I have entered the correct code.