If there's one thing we've been told to trust over the years, it's two-factor authentication (2FA) processes. Adding an extra layer of security to just about every account imaginable, apps like Google Authenticator and Authy have been a big part of our online lives.
Now, however, it appears Authy has been compromised, potentially releasing data of 33 million users, including phone numbers. Hackers claimed to have acquired the data while posting on a forum last week, and Kari Ramirez, a Twilio spokesperson, confirmed that "threat actors were able to identify data associated with Authy accounts, including phone numbers, due to an unauthenticated endpoint".
Speaking via TechCrunch, Ramirez said, “We have seen no evidence that the threat actors obtained access to Twilio’s systems or other sensitive data."
"As a precaution, we are requesting all Authy users to update to the latest Android and iOS apps for the latest security updates and encourage all Authy users to stay diligent and have heightened awareness around phishing and smishing attacks."
Time to switch to Apple's Passwords app?
One of the new features across multiple Apple OS releases this year is a new Passwords application for centralizing your login information.
Thankfully, the Passwords app can also generate two-factor authentication codes, making it easier to keep up with better security habits without installing extra apps.
Anything on the Passwords app is encrypted in the Keychain container, protected by encryption and synced across iCloud.
More from iMore
- Forget iOS 18, Apple is already hard at work on iOS 19, watchOS 12 & more
- iOS 18 will add support for new languages to key iPhone software features including the keyboard and search
- Apple Intelligence might be late to the party, but it's another shining example of why Apple believes doing things right is better than being first and doing them wrong
