How Google Authenticator gave attackers one company’s keys to the kingdom
Google's app for generating MFA codes syncs to user accounts by default. Who knew?
I was wondering why the university I'm attending uses a non-Google/non-Microsoft authenticator.
@Hawkmoon @arstechnica Hopefully they are using an #opensource alternative; those don't have a perverse incentive to tie the app to an account managed by a member of #GAFAM
There are several such options; #FreeOTP is my favorite https://freeotp.github.io/