Lastly, avoid using Google Authenticator, there are far better Authenticators.
I think this is the very first time I am coming across someone advising against using Google authenticator , why exactly is good authenticator not good, I personally have been using it for as far as I can remember, maybe since 3 or 4 years ago, I've never encountered any issue of any kind, so I am very curious to know exactly why you are advising against using google authenticator, and what other better authenticators do you recommend.?.
I've also been using Google authenticator for years for 2FA authorization on many sites, including the Betfury site. So I would also be interested to know why he recommended avoiding the Google app. Of course, there are many other authenticators, but in fact, all of them have almost the same functionality, and I don't see any reason to change Google authenticator for some other similar app. The main thing is to back up the recovery codes and always keep them in several places to avoid the problems that Rigon had recently encountered.
Probably due to the close source feature of the google app which makes it risky in some way in case google is storing our data. Think about it, If google have access to your authenticator key. Your security might be exploited when their database was breach.
There’s still some good Authenticator out there that is open source. Open source is the typical choice of forum user since everyone can check the code. I’m not that kind of meticulous in 2FA since all my account is protected with multi layer security. I’m also using google account for a long time. Changing now for an open source Authenticator is not for me.
I get your point and it's true if breach take place the chance of being exploit is possible, we really can't tell what or how things may take place but the possibilities is not by far as hackers are always trying to attack even how secure the system they will try to penetrate and if ever things went to their directions, it will really bring big risk into our accounts, especially those security system that we think will help us to prevent attacks to happen.
I see you are discussing one very interesting question. The question is which authentication is more preferable specifically for you.
Many millions of people use Google authentication and do not even think about other ways. However, everyone who has been interested in the development of blockchain technology and cryptocurrencies for a long time and at a higher level is well aware that all open source programs are always more transparent and, in a sense, even more reliable.
And the fact that Google's closed source authentication code may well present you with certain "gifts" in the form of potential third-party access to your credentials. This is obviously always denied by the devs of such systems, but it also obviously may well be the case in life. All the same, in this dilemma (open/closed source), I still lean more towards the open source option in all programs. And in particular in variants of authentication programs.
As for security and protection against hacker attacks, it must be said that both cannot guarantee 100% protection against hacker penetration and hacking, primarily by powerful groups of hackers.
So in this sense, Google-only authentication is not a panacea and is not the only truly reliable information security tool.
Moreover, even theoretically I have no doubt that, at the request of the authorities, Google will certainly provide personal information to authorized bodies in the event of an official request. This also applies to authentication data.
Perhaps with open source authentication, the issue is also solved, of course, but not as simply as in the case of such a widespread Google.