Google Authenticator collects much more data than the other authenticator apps PCMag reviewed

7 comments

Some good, open source TOTP apps to use are Aegis and Ente Auth.
- 2fas is great
- I use Aegis, it does what's on the tin.
  
  Verifiably, at that. On device only. Works without play services. Works without internet (doesn't even request internet permissions).
  
  Also open source.
Trusting your security to Google is literally like trusting a fox to guard your hen house.
Aegis collects no data.
I read their article but didn’t understand their methodology. This is pretty much in contrast to this video where a bunch of apps got audited and to everyone’s surprise Google Authenticator seemed like one of the most private alternatives.

Really not trying to defend Google here because… they’re fucking Google, but I’m wondering why the results are so different.

7 comments