THIS 2-Factor-Authentication method is NOT secure!!

Показать описание

If a hacker gets access to your email, bank, or crypto account, they can turn your life upside down. How secure are YOUR accounts?

One thing that can help you secure them is to use 2fa (2-factor-authentication) where you have to use multiple methods to sign into an account, rather than just a single password on a website. 2FA makes your account MUCH more secure.

But not all 2FA methods are create equal. For example SIM swaps allow hackers to intercept certain 2FA methods, so if your account is tied to a phone number then you're more vulnerable to being hacked.

We dive into various 2FA methods, including SMS verification, TOTP apps (authenticator apps), and security keys (like YubiKey), explain which is the most secure, and also talk about the tradeoffs of each.

00:00 Intro
01:58 SIM-based 2FA
05:28 Authenticator Apps / TOTP
09:52 Security Keys

*Edit: you can now export your google authenticator seed to another device.

Brought to you by NBTV members: Lee Rennie, Will Sandoval, Ogar, and Naomi Brockwell

To support NBTV, visit:
(tax-deductible in the US)

Visit our shop!

Our eBook "Beginner's Introduction To Privacy:

Beware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.

Visit the NBTV website:

Watch this video on Odysee!

________________________________________________________________________
Here are a bunch of products I like and use. Using these links helps support the channel and future videos!

Recommended Books:

Beginner's Introduction To Privacy - Naomi Brockwell

Permanent Record - Edward Snowden

What has the government done to our money - Rothbard

Extreme Privacy - Michael Bazzel (The best privacy book I've ever read)

No Place to Hide: Edward Snowden, the NSA, and the U.S. Surveillance State - Glenn Greenwald

Some of my favorite products to help protect your privacy!

Faraday bag (signal stopping, to protect your fob, credit card, computer, and phone)

Data Blocker (if you're charging your phone in an unknown port, use this so that no data is transferred)

Camera tape (electrical tape is the best tape for covering phone and computer cameras)

USB-C to ethernet adapter:

Privacy Screens (use your phone and computer in public? Keep your information safe!)

Computer: (Search for the size right for your computer)

Phone: (Search for the size for your phone, decide whether you want glass or plastic!)

Рекомендации по теме

Комментарии

As per all my other videos, no I didn't delete your comment. YouTube auto deletes comments all the time. If yours disappears, try posting again in various forms until it sticks, and good luck! 🙏 Also, since posting this video I've found out that google authenticator now allows you to back up all codes on another device! Have added that note to my video description.

NaomiBrockwellTV

i have been using a yubikey for about a year now and have been loving it. Great video

CoronaBorealis

Great episode! Already have a few security keys, but they are pretty old school. looking forward to the next episode you mentioned that will look into key differences in security keys!

anuzis

That crocheted top girl you’re rocking it💃🏽💃🏽

terrycan

Yubikey is the key to proper 2fa security

xperyskop

A good way to protect those accounts that ask common questions, like mother's maiden name, or name of your first pet, is to lie. If you type in an answer that has nothing to do with the questions, then someone who investigates you and your family will never guess it. Yes, it might be hard for you to remember that the answer you gave to the question of your first pet's name is "the Peloponnesian war", but it will be bloody impossible for someone else to guess, no matter how well they have studies you. Well, unless that actually was your pet's name. Yelling down the hall ... "Here, Pello"?

mjmeans

So if my phone is stolen along with my sim card with my personal number' can I still open my google account on another device?

stepot

I love that you cite helpful articles for further reading. 😊

IamAcerbus

Thank you. Very good information. BTW - nice sweater!

Avarua

This was a timely video for me regarding security keys. Thanks Naomi!

cryptowealthonyt

Screwgle has burned me on 2FA. Forcing activation of 2FA on my chromebook, defaulting to using the paired phone as a security key, they broke login. Due to some kind of bug in the pairing software I have to reset pairing anytime either device restarts, which I can't do until I'm logged in on both devices. So I'm down to a choice of, at login time:
- SMS as a second factor
- generating one time keys
- disabling 2FA using a device I can log into.

hanelyp

strong security Alpha . thank you . Nice Shiba shorts too . Love to know more about strengthening sim 2fa .
Wondering if changing a sim card will cause totp rejection on same device 👀

NWforager

Very useful information, thank you for providing it in such detail.
I'd like to ask a question about a different topic but still security related, I've heard that ISP knows everything we are doing online excluding encrypted data, my issue is that I'd like to create a brand new Google account but they will still be able to track down my address, password and even phone number used, it is there any way that this situation can be avoided, like how to encrypt the data of precreation?
Thank you in advance, I would love to see a video of yours on this topic.

RazvanOmega

Def looking forward to the upcoming video on security keys! thanks

Cryptonomics

Been using a yubi for 4 years, love it

lossless

Hey Naomi! So I’ve been careful to record all of 2FA setup keys for my google authenticator. That means that if I do lose my phone or access to the authenticator app I could set it all backup on a new phone or redownloaded google auth app using the setup keys, right?

nathanmead

Always helping us with great content. Thanks Naomi!

italimarco

Excellent review ! Thanks so much! I’ve been wondering about a security key! 🔐

RaveSongRecords

How is Google different with regards to privacy vs security? I don't see the difference?

johnbeckmeyer

what if 2fa locks out a legitimate account holder and somebody hacks the legitimate account holder's account and that legitimate account holder has no idea it happened because they are locked out?

raynful

THIS 2-Factor-Authentication method is NOT secure!!

THIS 2-Factor-Authentication method is NOT secure!!

STOP using this Two-Factor Authentication (2FA) method!

3 MISTAKES You're Making with 2-Factor Authentication (2FA)

Why You Should Turn On Two Factor Authentication

Fix Keep Your Account Safe Facebook 2FA Problem | Enable Two Factor Authentication Facebook Problem

Working Fix! | Facebook 2 Factor Authentication Problem | Locked Out of Facebook 2FA Bypass

The Big Problem With 2FA #Shorts

Why You SHOULD NOT Use SMS for Two-Factor Authentication

Asp.Net Core Identity Authentication with JWT - Part 2

How Hackers Bypass Two-Factor Authentication (2FA)?!

How to reset Multifactor Authentication in Microsoft 365 when users lose their phones

Hackers Bypass Google Two-Factor Authentication (2FA) SMS

How to Turn Off Two Factor Authentication in Facebook?

Hacking Two Factor Authentication: Four Methods for Bypassing 2FA and MFA

How to reset multi-factor authentication (MFA) on a new device or if a device is lost | Microsoft

How to Set Up Google Authenticator for 2 Factor Authentication (2024)

How to upgrade your 2-factor authentication

Forget Google Authenticator. THIS Secure Method is Even BETTER

Google 2 steps authentication bypass

NEW! Fix Check your Notifications on another device Facebook Two Factor Authentication Problem 2024

How to Turn Off 2 Factor Authentication facebook without login | Go to your authentication app 2024

How To Turn Off Two Step Authentication On Google - Full Guide

Here's Why I Moved to Security Keys for 2FA

How to Login Facebook without Two Factor Authentication Code 2024 Bypass 2FA Problem Facebook