If you use Google 2fa authentication app you probably should turn OFF the sync to cloud option

Retool blames breach on Google Authenticator MFA cloud sync feature

Software company Retool says the accounts of 27 cloud customers were compromised following a targeted and multi-stage social engineering attack.

bleepingcomputer.com/news/secu

if anyone gets access to your google account they can then instal the google 2fa app that will enable them to then get all your 2fa codes and see what accounts you have then start hacking your other accounts

switching cloud sync off means they can't as the 2fa codes are only on your device

begs the question though

why is a company using google authenticator app in the first place for employees

sidenote: google should add the feature "verify device" then when a new device adds google authenticator app the device the app was 1st installed on gets an alert to verify or not

Follow

@ecksmc same reason they’d use Google docs/sheets instead of M365, I imagine - perceived cost savings. Gonna hafta read more on what happened though, since I don’t use Google Authenticator.

I do know from recently doing my annual refresh/clean install that if you have MFA enabled and log into your Google account from an unrecognized machine that it immediately alerts you on that account and any other you had listed in the security/recovery settings.

@Synical idk about the app

I use google prompt alert - Google prompts are notifications sent to your phone to confirm your identity you can then allow or deny the sign in from a new device

Sign in to participate in the conversation

CounterSocial is the first Social Network Platform to take a zero-tolerance stance to hostile nations, bot accounts and trolls who are weaponizing OUR social media platforms and freedoms to engage in influence operations against us. And we're here to counter it.