• neatchee@lemmy.world
          6·
          1 day ago

          While this is good advice, best practice is to always get your yubikey in pairs and keep them synchronized. One should remain in your home, in a safe place (as you described) while the other should remain on your person or outside the home (e.g. in a safe deposit box)

          It’s more of a pain in the ass for sure, but handles the theft scenario more effectively

    • Venus_Ziegenfalle@feddit.orgEnglish
      9·
      1 day ago

      Have Android phone

      Don’t bother signing into your Google account

      Download Canta, Shizuku and f-droid apk and install

      Use canta to uninstall every Google app that isn’t strictly required

      Chrome, Gmail, Drive

      Weather, Launcher, News

      Clock, Keyboard, even the damn Calculator

      Everything. Canta actually tells you what is and isn’t safe

      Replace everything with open source alternatives as you go (don’t forget about a keyboard alternative)

      Get APKUpdater to install and update apps that aren’t on f-droid from various sources you can choose

      Have hastily degoogled Android phone

    • hansolo@lemm.eeEnglish
      7·
      1 day ago

      Do you not back up your 2FA when you set them up?

      People should need to take a test before they can be on the internet.

      • Nyadia (she/they)English
        2·
        22 hours ago

        I’ve never set up 2FA on my google accounts, but knew someone who this happened to which is why I was hesitant to set it up on my own accounts. Didn’t know backing up 2fa was a thing.