Summary
- Authy is a 2FA app that recently suffered a data breach that exposed more than 33 million phone numbers.
- An unsecured API endpoint allowed threat actors to collect linked numbers.
- If you think your personal information might be among the 33 million leaked numbers, consider securing your accounts with 2FA and be wary of SMS phishing attacks.
Just moved all my 2FA over to Bitwarden and Bitwarden Authenticator, and deleted my Authy account. I’d already been using it for passwords, so it was a natural fit.