I lost my RUclips account and years of work and income through my Google account. Tremendous damage can be done to people. Crooks can't benefit from theft of my videos, but really crushed me. I will learn how to protect my new channel. Thanks for this video! Rich
@@johnbod It was a blow, for sure. Years of hard work gone. 2200 videos, gone. Since I love to make videos I kept going and my new channel is doing pretty well. Thanks. Rich
Thank you for this video. I watched about 10 just like this and what I liked about this one is how easy it was to follow and how clear you were in explaining.
you deserve a medal. exactly what I was looking for. However, your statement that you will show the ultimate secure method where losing the key means losing the account isn't true because of the backup codes, right?
You're right, you want to stay secure but you don't want to risk loosing your data. So use a yubikey as a primary second-factor and the printed codes in a safe as a backup.
If someone tells you something can't be hacked, they're either trying to sell you something or they don't really understand hacking. There are lots of "unhackable" things that have been hacked.
Yes you are right about that one day and I am very sure that it's going to be better for the both of happiness to get as long as this world has to much of lifetime beautiful weather and the way it has been trying to see if that was something safety and an amazing opportunity too cherishing the fact of lifetime beauty and the nature of lifestyle that everyone has too having an amazing female friends who will love too different things for all the right reasons when they are asking for from their good friends and gentleman who is really and who has been trying to make her understanding of this situation in life now
Newest (2023) FIDO Passkey tech is now supported by Google for Google (Gmail) authentication Essentially makes your phone device operate like a Yubikey. More secure and more convenient than SMS based 2FA when set up on devices that are not shared with others.
Excellent video thank you. The piece that I am a little fuzzy on is the Yubico authenticator piece. You answered all my questions especially about the recovery phone and email.
i am confused. At 12:10 are you setting up the authenticator on the PC or on the phone? Your languages suggests u r setting it up on PC -- but the graphic shows "SCAN the QR CODE" -- so how did you scan the qr code on the laptop? My question is will this authenticator require a phone? Or can it just be installed on a PC?
if a Ubikey was built like a usb drive, I would use one. But the one I had a few years ago was just a piece of cheap plastic with the metal contacts exposed. It would not set correctly in the usb port and 60% of the time had a loose, intermittent connection, which caused failure errors
Hi Tristan. Thanks for this video. I don't really understand how (or IF) a hacker could just view files on my desktop computer. I have a wireless network and use it with TiVo, but I HOPE my smart tv does not have access (I don't know how to tell for sure). My iPhone has nothing on it but my contacts - I don't use it for internet at all - just phone calls and text. I do zip/encrypt anything sensitive on my desktop data partition, such as financial info, identity info, password info, etc. (which carries to my backup/image files drives/partitions). Do I really need to do this? I noticed that you had checked to remember "this" computer, or not to require certain security things on "this" computer. If I only use the one desktop for everything online, can I consider that as long as "this" computer (that no one touches but me) is recognized, I don't have to be concerned about the files on my drives? Like if my password manager is unlocked, for instance - is there any way my passwords could be accessed by someone else?. How could someone have access to my files/folders on my desktop?
Thanks for the questions. There are a number of ways both physically and with virus' that someone could get access to your data, too many ways to list here. First protect yourself from physical access to the data, if your computer is stolen, by using an encryption-at-rest option. Encrypting your zip files is one way, you can secure all your files by encrypting your hard drive. On a mac this can be done under System Preferences -> Security & Privacy -> FileVault on a Windows you'd turn on Bitlocker. To protect against cyber attack's, make sure you have a good anti-virus / malware protection, and keep your most important data offline: Digital wallets on a USB drive, Two-Factor codes with YubiKey, and Passwords (better yet use Bitwarden: ruclips.net/video/TcxZyfTOyYw/видео.html). Hope that helps
What if my laptop is hacked and I plug in my YubiKey into the hacked laptop? Wouldn't this make the authenticator apps on phones the better choice? I asked a similar question about backing up files on Dropbox.
There are viruses all over attempting to gain access to authenticator apps on both computers and cell phones. By having a yubikey the hacker would have to get the code at the same time you've plugged in the key and login less than 60 seconds from when you've plugged in the key. If you're really concerned about the authenticator app getting hacked you could use a air-gapped device, often an old iPhone or Android device without a SIM card and off wifi, and use that to generate your codes. Hope that helps!
@@tristanbolton It would just be done automatically by the malware. I think that there's ransomware out there that automatically activates when a USB flash drive is plugged in. The same principle applies.
You have mentioned about not given either the phone or the associated email to damage the virtue of the account, then, when google asked for the email requested, what's my option to op out? should I be brave enough to delete this email description? then how will I able to recover as asked? or the code in the yubikey will suffide?
oh, you said, that every email has it's own code, and from the yubikey alone, but the passing code using in conjunction with the googe authenticator, will ea time generate a code for the to be copied and paste to be used in ea case, and the solo code, is not displayed. is it right?
Nice video. With your suggested method if I want to connect from my friend’s computer to my gmail account I need to use the ubikey to unlock the authenticator on the phone, right? So the usbA is not an option to buy. Either nfc or lightning for iPhone users
There are 10 backup codes, but you only need to use one code each time to access Gmail, correct? So once one of the codes is used, you cross it out, and the rest can still be used? Or, you have to use all 10 of them in a certain order? Thanks!
Email & phone number recovery would only work w/ location that google has on record; is that right? Not saying this is bullet proof. But it makes it harder than if all that is needed is the text message. Am I wrong about this?
I haven't tested this recently, I've encountered the familiar location block before, but I've also gotten past it on other accounts (with the users permissions of course). Like you said, I wouldn't count on that being bullet proof, but it is a nice security feature by Google.
I'm not sure but an alternative second step like backup codes does not appear in my case. Maybe because I already added a second key or google remove this option.
with both security key and authenticator app (using Yubi Authenticator) setup, you can 2FA with any of those methods at any time, right? The other good thing about using Yubi Authenticator is you don't have to worry about migration when changing phones as the codes/info. are stored on the hardware itself?
@@snehal6282 yes you are right so to be safe print your barcode when setting up authenticator very first time as that can be reused as many times you want with different authenticators
The big question is, Who in the world would want to be posing as Tristan, is like "Hello, tricksters hackers and thief have some respect for themselves"
So how do you use backup codes? What is the pathway to entering them. Does it come up as an option only if it has been enabled? Is it an alternative to losing your password or an additional security?
Yes, when clicking authenticate you'll have a "No access to security key" option (maybe phrased a bit differently) which will give you the possibility to select another authentication method. If only backup codes are added, you'll get the chance to use one of the previously printed codes.
Does that mean that all of my Authenticator Codes are stored on the key and all i have to do is to install the app to read them? So if i set up 2FA for any site i could store the Authenticator Code on 2 yubikeys and have one as a backup, is that correct? And does this work for microsoft authenticator to or just google authenticator?
I like your teaching style. Thank you. Do you know if its possible to remove "google prompts" as a verification method after adding a security key to your account? It seems like that would be a weaker link in the chain if it cant be disabled.
After some research it appears that as of right now, the only way to remove google prompts is to sign out of Google on that device such as a phone. It'd be nice to be able to stay signed in on my phone while also not using it for prompts. However, that also raises the issue that the phone would still remain the weak link since your Google account could be accessed on the phone itself if someone was able to get past your lock screen.
No. If you are worried about it, you just have to get one of the ones that don't have it. It would have to be a very targeted attack for someone to have something that can read and replicate nfc, get close enough to the thing to get them, and then know all the other information they need to log in then use the key. If you are someone that have risk of that level of Mr. Robot hacker, you'd probably be using the non-nfc enterprise keys anyway.
Great video! Especially using Yubikey authenticator. Would it be safe to leave the key in the computer 24/7? Because constantly removing and inserting it may break something.
is safe as far as you use the non-NFC key. Like this there is need for a physical button push to actually send the pass/OTP to Google. And so far no malware can simulate that.
Thank you Tristan. Fantastic presentation on securing Gmail! Would you please address the inherent vulnerability of all authenticator apps. If someone gets a hold of your Authenticator OTP seed they can generate OTP codes for your account, even if the don't have your Yubikey security key. The is OTP seed is plain txt stored by your service provider Gmail.
Are you sure the OTP seed is stored in plain text by the provider? That would be a huge security breach potential. I think nowadays all providers of 2FA have to made sure that seeds are stored encrypted.
Yeah pretty much. They'll give you only a couple of tries, before they block the requests and you gotta wait for a period of time (pretty long I might add). It is highly unlikely a brute force attack would work (it would have to be extremely lucky) and a Spray Password attack has basically 0 chance, since those codes are random. Then you might ask, why the Standard login isn't as secure, asu it also allows only a handfull of tries? Because a) the Homo Sapiens is by far the dumbest species on the planet. Brute Force isn't an option, but Spray Password attacks are. So they'll try often used passwords (such as "Password1") and often have great success with that. If there is no 2FA setup, hackers will get in there in no time. Also if there are keyloggers or anything like that on the PC, they can just get the Passwords that way. For the Yubikey and security - even if a hacker got remote controll over your PC and has the Password, still no success, as you need to physically touch that thing in order to work.
@@ralfidude I found a cheaper way. I have lots of old phones around that are disconnected from the internet. I just installed Authenticator on all of them and enrolled the same keys.
so if someone gets access to your YubiKey and plugs it in with YubiCo authenticator it has all the info. of what services+accounts are stored on the key e.g. at 12:08, isn't that concerning and kind of a security issue?
I like the idea of using the authenticator app with a key. I continue to be cautious about what happens if I lose a key and should I care. A bad actor gaining access to email is certainly a major issue. Also, maybe Google Voice is the better way to handle 2FA SMS. Or any SMS service that isn't cellular.
I lost my RUclips account and years of work and income through my Google account. Tremendous damage can be done to people. Crooks can't benefit from theft of my videos, but really crushed me. I will learn how to protect my new channel. Thanks for this video! Rich
That sucks about losing your RUclips account - Glad you're finding more security tips like this to prevent that from happening again. Stay safe!
Hi Rich, I just wanted to say I'm really sorry to hear that happened. I hope you have been able to come back from it.
@@johnbod It was a blow, for sure. Years of hard work gone. 2200 videos, gone. Since I love to make videos I kept going and my new channel is doing pretty well. Thanks. Rich
@@richdavis4007 hi I am sorry for your Channel But can you Please help Me secure my Gmail account from hackers because my account is important
@@arunaslasiunas6699 I'm not an expert on this. Best wishes.
Thank you for this video. I watched about 10 just like this and what I liked about this one is how easy it was to follow and how clear you were in explaining.
Glad it was helpful!
Hands down, tNice tutorials is THE best beginner video I've watched. Others want to brag about all the sample, loops, etc they have. You keep
Wow great explanation to security issues in Google
He did a very good job imo. Explaining the basics step by step. English is not my first language and I have no experience in using DAWs
you deserve a medal. exactly what I was looking for. However, your statement that you will show the ultimate secure method where losing the key means losing the account isn't true because of the backup codes, right?
You're right, you want to stay secure but you don't want to risk loosing your data. So use a yubikey as a primary second-factor and the printed codes in a safe as a backup.
I Only using Backup codes And google prompt
@@tristanbolton I etched the backup codes in a steel plate with my laser cutter for ultimate disaster survivability.
@@arunaslasiunas6699 i don't think google prompt is safer than using regular OTP
Tristan, how does yubikey on my google account effect my youtube tv account? Will I need the yubikey to stream RUclips tv?
If someone tells you something can't be hacked, they're either trying to sell you something or they don't really understand hacking. There are lots of "unhackable" things that have been hacked.
We’ll you can’t hack my grandma’s toaster.
Yes.. there is a thing called life hack..
Yes you are right about that one day and I am very sure that it's going to be better for the both of happiness to get as long as this world has to much of lifetime beautiful weather and the way it has been trying to see if that was something safety and an amazing opportunity too cherishing the fact of lifetime beauty and the nature of lifestyle that everyone has too having an amazing female friends who will love too different things for all the right reasons when they are asking for from their good friends and gentleman who is really and who has been trying to make her understanding of this situation in life now
Newest (2023) FIDO Passkey tech is now supported by Google for Google (Gmail) authentication
Essentially makes your phone device operate like a Yubikey. More secure and more convenient than SMS based 2FA when set up on devices that are not shared with others.
What are the differences from the regural and the free trial one
Wow, great video, Tristan. Thanks so much. Clearest explanation for securing a gmail account I have ever heard.
Thank you Tristan! You've just helped me save a lot of time and this was easy to follow.
Thank you . You really make sense of these keys .
Would you recommend backup on usb or better on paper?
Excellent video thank you. The piece that I am a little fuzzy on is the Yubico authenticator piece. You answered all my questions especially about the recovery phone and email.
not know , but just know you've affected my life, and apparently tens of thousands of others, in an imnsely positive way. Thank you
Hey this is nice. Thanks for the informative video. I am planning to buy one and was wondering how many accounts can we add on a single key?
You train so well! It's like you comprehend my tempo...
Truly liked the way you have explained how to secure one's account. This is very very useful. Thanks !!!!!
i am confused. At 12:10 are you setting up the authenticator on the PC or on the phone? Your languages suggests u r setting it up on PC -- but the graphic shows "SCAN the QR CODE" -- so how did you scan the qr code on the laptop? My question is will this authenticator require a phone? Or can it just be installed on a PC?
12:07 what if you already have 2FA already setup? How would you get it onto the key?
if a Ubikey was built like a usb drive, I would use one. But the one I had a few years ago was just a piece of cheap plastic with the metal contacts exposed. It would not set correctly in the usb port and 60% of the time had a loose, intermittent connection, which caused failure errors
Hi what camera system are you using?
Hi Tristan. Thanks for this video. I don't really understand how (or IF) a hacker could just view files on my desktop computer. I have a wireless network and use it with TiVo, but I HOPE my smart tv does not have access (I don't know how to tell for sure). My iPhone has nothing on it but my contacts - I don't use it for internet at all - just phone calls and text. I do zip/encrypt anything sensitive on my desktop data partition, such as financial info, identity info, password info, etc. (which carries to my backup/image files drives/partitions). Do I really need to do this? I noticed that you had checked to remember "this" computer, or not to require certain security things on "this" computer. If I only use the one desktop for everything online, can I consider that as long as "this" computer (that no one touches but me) is recognized, I don't have to be concerned about the files on my drives? Like if my password manager is unlocked, for instance - is there any way my passwords could be accessed by someone else?. How could someone have access to my files/folders on my desktop?
Thanks for the questions.
There are a number of ways both physically and with virus' that someone could get access to your data, too many ways to list here. First protect yourself from physical access to the data, if your computer is stolen, by using an encryption-at-rest option. Encrypting your zip files is one way, you can secure all your files by encrypting your hard drive. On a mac this can be done under System Preferences -> Security & Privacy -> FileVault on a Windows you'd turn on Bitlocker.
To protect against cyber attack's, make sure you have a good anti-virus / malware protection, and keep your most important data offline: Digital wallets on a USB drive, Two-Factor codes with YubiKey, and Passwords (better yet use Bitwarden: ruclips.net/video/TcxZyfTOyYw/видео.html).
Hope that helps
@Tristan is there a way to use those keys without have to install any app on the smartphone? just plug in or use NFC?
Great video! Thanks
Great but can i use yubico authentication app on my phone without using the physical cable
Can I used the yubikey with Authy
What if my laptop is hacked and I plug in my YubiKey into the hacked laptop? Wouldn't this make the authenticator apps on phones the better choice?
I asked a similar question about backing up files on Dropbox.
There are viruses all over attempting to gain access to authenticator apps on both computers and cell phones.
By having a yubikey the hacker would have to get the code at the same time you've plugged in the key and login less than 60 seconds from when you've plugged in the key.
If you're really concerned about the authenticator app getting hacked you could use a air-gapped device, often an old iPhone or Android device without a SIM card and off wifi, and use that to generate your codes.
Hope that helps!
@@tristanbolton It would just be done automatically by the malware. I think that there's ransomware out there that automatically activates when a USB flash drive is plugged in. The same principle applies.
Your a Genius man I got trolls trying to fish my crypto! =) Strange emails and all types of BS. Thanks.
When I gonna use the yubikey, can i use it on multiple gmail accounts? Or is it for only one account?
have you found the answer? because i want to buy youbikey
and to secure my 7 gmail accounts .and 2 outlook accoutns.
clips. I use a drum loop and afterwards I want to record a appguitar. What happens.. the drumloop starts to record again along the
What?
how do i set this up on on firefox
How do you that that the maker of these Keys can be trusted?
You have mentioned about not given either the phone or the associated email to damage the virtue of the account, then, when google asked for the email requested, what's my option to op out? should I be brave enough to delete this email description? then how will I able to recover as asked? or the code in the yubikey will suffide?
oh, you said, that every email has it's own code, and from the yubikey alone, but the passing code using in conjunction with the googe authenticator, will ea time generate a code for the to be copied and paste to be used in ea case, and the solo code, is not displayed. is it right?
the Security Key NFC does not support OTP, correct? so for what you showed we need the higher price one?
Nice video. With your suggested method if I want to connect from my friend’s computer to my gmail account I need to use the ubikey to unlock the authenticator on the phone, right? So the usbA is not an option to buy. Either nfc or lightning for iPhone users
Do I need to buy a separate key for my mobile and Laptop?
Just one key should be fine
Do you know if the backup codes are vulnerable to brute force attacks? Thank you.
My phone doesn't have NFC and uses Micro B. Is there no option to use Yubikey with my phone?
There are 10 backup codes, but you only need to use one code each time to access Gmail, correct? So once one of the codes is used, you cross it out, and the rest can still be used? Or, you have to use all 10 of them in a certain order? Thanks!
Once a code is used, cross it out. Can't be used again.
Email & phone number recovery would only work w/ location that google has on record; is that right? Not saying this is bullet proof. But it makes it harder than if all that is needed is the text message. Am I wrong about this?
I haven't tested this recently, I've encountered the familiar location block before, but I've also gotten past it on other accounts (with the users permissions of course).
Like you said, I wouldn't count on that being bullet proof, but it is a nice security feature by Google.
I'm not sure but an alternative second step like backup codes does not appear in my case. Maybe because I already added a second key or google remove this option.
Can you use yubikey for yahoo mail?
Yes, I'll add this to my video list
Can it works on Google tv? Or Maybe create a new account for non important access ?
Can be yubico authentication app work with most android apps like Facebook and Amazon?
Or would I have to log in on a browser or my laptop?
drums softing good start learning how to make your own lodies. Good luck bro!
Huh?
Thanks - Do you have to do this for every Google email address you have?
Depends on how important the account is but generally most of them are secured this way
Please do a video setting up the Yubikey with FaceBook. I ran into some very unexpected issues, like being asked for a PIN?
with both security key and authenticator app (using Yubi Authenticator) setup, you can 2FA with any of those methods at any time, right? The other good thing about using Yubi Authenticator is you don't have to worry about migration when changing phones as the codes/info. are stored on the hardware itself?
Am I right in thinking if we lose Ubikey we can not have an access to Ubikey authenticator? Did I miss anything,
@@snehal6282 yes you are right so to be safe print your barcode when setting up authenticator very first time as that can be reused as many times you want with different authenticators
The big question is, Who in the world would want to be posing as Tristan, is like "Hello, tricksters hackers and thief have some respect for themselves"
Your'e awesome, thanks. really helpful.
p0ppp
PP
PP
Ppplppplpp
Ppllpppppppppppppppp
Ppllppppppppp
Ppplppppppp
P
P
Pp
Ppppl
how about when setting up the gmail its ask for a phone number just to set up the account? Is there a way to get around that?
I haven't seen a way around that one that complies with their terms of use
do you have a tutorial showing how to loop drum, app guitar, etc. after let's say eight bars.
Why would this video be about music production, BOT! 😡🖕🏿
The second you have backup codes, they key thing is worthless. Great, thanks
Can I import my softs into soft soft and process without using a mic
Thx .Nice easy beginners guide. helped plenty!
The default tempo for the soft is 120 and when i set the tempo to 100 and played it again, the midi plays again in 120 bpm in tempo. Can
just beca a subscriber keep up the good work Sir.
Good job Tristan .
Thanks!
So how do you use backup codes? What is the pathway to entering them. Does it come up as an option only if it has been enabled? Is it an alternative to losing your password or an additional security?
Yes, when clicking authenticate you'll have a "No access to security key" option (maybe phrased a bit differently) which will give you the possibility to select another authentication method. If only backup codes are added, you'll get the chance to use one of the previously printed codes.
In the GMS switch the “Program” to Analog app 1 TE
Nice tutorial Micheal, great video to get us started. May you tell - how do I link two or more channels (in the rack channel) as to share the sa
ive been making complete verses on a single soft, it seems everyone of these tutorials i find like to put a single instrunt on each
Does that mean that all of my Authenticator Codes are stored on the key and all i have to do is to install the app to read them?
So if i set up 2FA for any site i could store the Authenticator Code on 2 yubikeys and have one as a backup, is that correct?
And does this work for microsoft authenticator to or just google authenticator?
I like your teaching style. Thank you. Do you know if its possible to remove "google prompts" as a verification method after adding a security key to your account? It seems like that would be a weaker link in the chain if it cant be disabled.
After some research it appears that as of right now, the only way to remove google prompts is to sign out of Google on that device such as a phone. It'd be nice to be able to stay signed in on my phone while also not using it for prompts. However, that also raises the issue that the phone would still remain the weak link since your Google account could be accessed on the phone itself if someone was able to get past your lock screen.
Helped A Lot! Thanks!
Great video, thanks for sharing! Is there a way to disable NFC of the Yubikey?
No. If you are worried about it, you just have to get one of the ones that don't have it. It would have to be a very targeted attack for someone to have something that can read and replicate nfc, get close enough to the thing to get them, and then know all the other information they need to log in then use the key. If you are someone that have risk of that level of Mr. Robot hacker, you'd probably be using the non-nfc enterprise keys anyway.
Does google see your email before it can be secured in your account?
I love your tutorials
Absolute W video. I had a lot of money softowing in in a good ti of my life where I would spend it on dumb stuff. But one of the few good
Thank you so much! TNice tutorials video helped produce fire soft thanks bro❤️
What about google advance protection program
Bro, Please answer If i only use backup codes and Google prompt So My account will still be safe right?
How to u set the key on ur phone
Thank you so much for so good information
Can you use more than 1 email with only 1 key ?
But how do I make s in tNice tutorials using my midi keyboard?
With wNice tutorialch app you made tNice tutorials video??
5 seconds before you said thats a bit boring I was like dude thats sick
Great video! Especially using Yubikey authenticator. Would it be safe to leave the key in the computer 24/7? Because constantly removing and inserting it may break something.
is safe as far as you use the non-NFC key. Like this there is need for a physical button push to actually send the pass/OTP to Google. And so far no malware can simulate that.
very clear and detailed! thanks
Been working soft for a few years now... using it on Mac now and it crashes a lot Nice tutorialndering my progress on the tracks im working on ... I'm
Thanks man for the info it is really useful👌
help to get the basics and I'll jus move from there. Thank you!
Thanks so much for tNice tutorials bro
Great video indeed, thanks!
im having a problem when i put gms and na the patter "app" it doesnt soft like what it was in the video its a loud annoying soft
If you loses the usb key then?
Anyone know what version of soft soft he's using? Like do I have to buy the $200 version for the stuff in the video or is the $100 dollar
Thank you Tristan. Fantastic presentation on securing Gmail! Would you please address the inherent vulnerability of all authenticator apps. If someone gets a hold of your Authenticator OTP seed they can generate OTP codes for your account, even if the don't have your Yubikey security key. The is OTP seed is plain txt stored by your service provider Gmail.
Are you sure the OTP seed is stored in plain text by the provider? That would be a huge security breach potential. I think nowadays all providers of 2FA have to made sure that seeds are stored encrypted.
Are u sure the BACKUP codes are secure ??? first using Physical key and then to get access via BACKUP codes ??? plz enlighten me sir
Yeah pretty much. They'll give you only a couple of tries, before they block the requests and you gotta wait for a period of time (pretty long I might add). It is highly unlikely a brute force attack would work (it would have to be extremely lucky) and a Spray Password attack has basically 0 chance, since those codes are random.
Then you might ask, why the Standard login isn't as secure, asu it also allows only a handfull of tries? Because a) the Homo Sapiens is by far the dumbest species on the planet. Brute Force isn't an option, but Spray Password attacks are. So they'll try often used passwords (such as "Password1") and often have great success with that. If there is no 2FA setup, hackers will get in there in no time. Also if there are keyloggers or anything like that on the PC, they can just get the Passwords that way.
For the Yubikey and security - even if a hacker got remote controll over your PC and has the Password, still no success, as you need to physically touch that thing in order to work.
What happens if you lose the Yubikey or it gets defective by hardware failure?
that's why you buy 2 and keep them separate of each other. Keep one on your keychain, keep the other one at home in your desk
@@ralfidude I found a cheaper way. I have lots of old phones around that are disconnected from the internet. I just installed Authenticator on all of them and enrolled the same keys.
YO THANK YOU SO MUCH
so if someone gets access to your YubiKey and plugs it in with YubiCo authenticator it has all the info. of what services+accounts are stored on the key e.g. at 12:08, isn't that concerning and kind of a security issue?
You can make a password to your yubikey
I want a key that uses bluetooth. Will that work?
I like the idea of using the authenticator app with a key. I continue to be cautious about what happens if I lose a key and should I care.
A bad actor gaining access to email is certainly a major issue.
Also, maybe Google Voice is the better way to handle 2FA SMS. Or any SMS service that isn't cellular.
Thank you for great explanations.
I'm trying to add a security key to my account but when I press the gold disk it does nothing just keeps loading any suggestions? Please
Thank you bro !!!