This prompted me to move away from Authy, and looking it up, it doesn’t allow you to export your TOTP tokens. There were some workarounds but then have been plugged, I tried.
Mostly switched over to Bitwarden’s equivalent. I’ve been using their password manager for many many years now and am very happy with it. They have an export feature in a few different formats.
What are some good multi-platform alternatives/ replacements?
Bitwarden or Proton Pass.
Keepass. Standalone FOSS apps for desktop/phone. Has OTP support.
Password/tokens are stored in a small encrypted db file you can copy/paste anywhere you need it. Has hundreds of plugins to do various things.
Use something like syncthing/nextcloud/onedrive to keep the file in sync across devices.
andOTP + bitwarden for me
AndOTP is great. Its free and had simple and easy encrypted backups. I love how its timer counts down, not up like some others and highlights the token in red so you know you need to hustle or wait.
I like using bitwarden, the selfhosted vaultwarden server stores it with passwords and makes codes available in the app / browser extension. I also keep them backed up on a nas and synced off-site just in case.
Along with others already mentioned, 1Password can support 2fa.
1Password has impressed me. I’ve used KeePassXC, LastPass, Bitwarden (but not extensively and one of the early versions), and even CyberArk (🤮).
1Password is closed source but it’s one of those pieces of software that just works the way you expect it to. Hard to confirm a lot of their security claims. Just rolling with “Have not heard a lot about 1Password breaches” mentality.
We got lucky at work and used it to replace an unmanageable long list of KeePass database files that were sprawling everywhere. With that everyone who uses 1Password at work gets an associate private family account. Made managing my kids passwords and share some of our common family passwords way easier and I still get to lock them out of my passwords I don’t want them using.
I believe modern Bitwarden for enterprise has a similar licensing sweetener with a private family account for each corporate account.
Well that’s already my Monday morning gone. I use Authy desktop for all of my work 2FA tokens.
KeePass has native TOTP support now
Just spent a week manually moving everything off Authy. Total pain, but there are lots of better solutions out there now.
I used Authy a couple years ago, do I need to be worried?
Only if you use it currently. Otherwise no worries.
Thanks. I couldn’t understand if there was a data breach that led to this or if it was just current users.
Whoa
