Encrypt all the things!

Ah yes

https://nextdns.io/?from=2s32dk9n

No idea if that'll give you anything given I was using it already,but you never know.

Cheers. We shall see.

same, was looking to move from last pass for a while but needed a push, interface is crap, autofill didn't work half the time, seems like no dev for a few years and the logmein thing wasn't sitting comfortable with me. had been using keepass forever before lastpass a few years ago.

moved to 1password, family plan and 5 days in no glitches. only thing I miss is attaching photos to entreis, you can do it via linked docs, but they didn't transfer & it's slow. useful for passports, credit cards etc.

I'm a big fan of 1password as well... company moved from Lastpass too.
That said, I still use keypass for things involving banks etc..

Big fan of 1password too. So easy to use across devices. Have lastpass at work and haaaate it.

I got an email today from Coinbase saying they are dropping support for Authy, (apparently due to concerns about phone porting attacks).

How would they even know I'm using Authy over, say, Google Authenticator?

Fucksake I only just logged in again.

What do they say they're replacing it with? Presumably their own 2FA system then?

Also, I don't have this email yet, could it be dodgy?

I didn't get anything similar from them, and there's no notice on their site.
Are you sure it's not a scam? Did you follow any links in the mail?

Edit - they do say that security keys are preferred over authenticator apps. But there's no notice, I didn't receive a mail, and there's no obvious reason they should know which authenticator you're using anyway.

May have been on the cards for a while:
https://www.reddit.com/r/CoinBase/commen­ts/aa3nqu/why_is_coinbase_in_my_authy_ap­p/

https://help.coinbase.com/en/coinbase/ge­tting-started/verify-my-account/2-factor­-authentication-2fa-faq

TOTP "not supported"

Which is funny because I logged in using TOTP just the other day and had to submit a bunch of personal shit just to access my account. It's like a fucking bank now.

It's weird. I didn't click any links, and I googled for news instead. And I found a bunch of stories, but I just noticed all the stories are from 3-4 years ago.

Hippy just linked to an article on their website which says they support GA and Duo, which is what the email said I should move to.

I don't understand how they can support GA but not Authy. Sounds more like a falling out than a technical reason but I'd need to read the articles.

I found one article which said they don't like Authy because it's more vulnerable to porting than GA.

But thinking about it now, I'm pretty sure there's no way they can tell which application was used to generate a token.

...aaaand I can still log in with Authy. I'm just going to ignore it.

Yeah, I thought they were the same so it seems to be a bit of scare mongering. I still use Authy.

There's security but there's also convenience and if I lose or break my phone, with Authy I have a backup and don't have to get a tonne of 2FA stuff reset.