Skip Navigation

Authy got hacked, and 33 million user phone numbers were stolen

appleinsider.com Authy got hacked, and 33 million user phone numbers were stolen

Twilio has updated its iOS Authy two-factor authentication app following a hack that reportedly saw 33 million cellphone numbers being stolen.

Authy got hacked, and 33 million user phone numbers were stolen
186

You're viewing a single thread.

186 comments
  • Stop. Trusting. Cloud/SAAS. Security. Apps.

    Don't give them your passwords and private keys, because you can never know of they're being stored responsibly, or who has access to them.

    Don't give them your personal details, they don't care about protecting user anonymity.

    Keep your keys and passwords in local, encrypted files, and generate your TOTPs locally.

    "But that's not convenient!" - It's plenty convenient, find an app that supports your phone's biometrics. There are plenty on both Android and iPhone that also work in Windows/MacOS/Linux.

    "What if I lose my phone?" - Keep your files backed up. If you don't do this, you deserve to get locked out. Fear of losing data is a good thing, it keeps you vigilant. Apathy gets you another of these stories.

    There are plenty of apps that encrypt local storage for security keys and code generation. Stop allowing these tech bros to create honeypots catnip for hackers, and making you pay them for the privilege of being an easy target.

    Edit: I've been using "honeypot" wrong. It would actually be good if the hackers tried to hack one of those.

186 comments