Two Factor Authentication (2FA). The SCAM of the Century. Defensive Strategy.
Рет қаралды 73,229
Күн бұрынYou give your mobile phone number to any Internet platform that asks for it. They claim it is for your security as a Two-Factor Authentication method. The truth? It is for KYC - to ID You. It is your ID card on the Internet.
It is not a given that you accept this. Because when you willy nilly just give them your phone number, it will often result in a complete loss of privacy, where everything you do is tied to your real identity.
I will give you solutions to determine if you're being scammed, and how to protect yourself if the site still requires a phone number. Some requests are valid so you need to be able to tell.
-----------------------------------
Brax Virtual Phone, De-Googled Phones, BytzVPN, BraxMail, BraxRouters are available on brax.me. Sign in to the platform to see the store. You will not be asked for personal information to sign up.
-----------------------------------
Merch Store
my-store-c37a5...
-----------------------------------
I'm the Internet Privacy Guy. I'm a public interest technologist. I'm here to educate. You are losing your Internet privacy and Internet security every day if you don't fight for it. Your data is collected with endless permanent data mining. Learn about a TOR router, a VPN , antivirus, spyware, firewalls, IP address, wifi triangulation, data privacy regulation, backups and tech tools, and evading mass surveillance from NSA, CIA, FBI. Learn how to be anonymous on the Internet so you are not profiled. Learn to speak freely with pseudo anonymity. Learn more about the dangers of the inernet and the dangers of social media, dangers of email.
I like alternative communication technology like Amateur Radio and data communications using Analog. I'm a licensed HAM operator.
Support this channel on Patreon! www.patreon.co...
Contact Rob on the Brax.Me App (@robbraxman) for encrypted conversations (open source platform)
brax.me/home/rob Store for BytzVPN, BraxRouter, De-googled Privacy AOSP Phones, Linux phones, and merchandise
bytzvpn.com Premium VPN with Pi-Hole, Cloud-Based TOR Routing
whatthezuck.net Cybersecurity Reference
brax.me Privacy Focused Social Media - Open Source
Please follow me on
Odysee
odysee.com/$/i...
Rumble
rumble.com/c/r...
@sambergin6225 Ай бұрын
This is one of the many things that bugs me about Google 2FA (including with paid Workspace). You MUST use a phone number for initial 2FA setup. Sure, you can setup Authenticator-based 2FA after the fact, but now they have your phone number. And I don’t trust that they delete the record of your number from their system if you remove it as a 2FA option later.
@robbraxmantech Ай бұрын
I didn't know that. Fortunately for me, I've changed numbers several times since. My old strategy was changing a secondary SIM card every 6 months
@terrydaktyllus1320 Ай бұрын
If you provide a burner phone number on a de-Googled Android phone, I don't see how this would be a great issue. A de-Googled phone cannot be location-tracked by Google - so they don't know where you are at any moment in time. Plus if the burner phone number is known only to you and does not appear against your identity in anyone else's online contacts, then how does Google get your true ID from it anyway? Sure, I'm not denying that phone-based 2FA is a scam, but specifically for this one-time authentication, I don't see that it's a great issue with a de-Googled burner phone.
@teru797 Ай бұрын
@@robbraxmantech when you change your phone number, do the phone companies keep track of your old numbers? I assume they do but maybe not forever?
@JD-mz1rl Ай бұрын
@@terrydaktyllus1320Google is very picky on the numbers they accept for 2FA. Most burner numbers won't be accepted
@sambergin6225 Ай бұрын
@webwabo16you can use Authenticator as the FIRST method you set up? Is it only Google Authenticator? I use an alternate authenticator method, maybe that’s my issue?
@Kaynos Ай бұрын
More and more online services are asking straight up phone numbers now instead of an email. I'm not interested in giving anyone my phone numbers it only leads to more unsollicited robotcalls.
@Milosz_Ostrow Ай бұрын
Two-Factor Authentication is one of the reasons I have been distancing myself from everything Google for the last few years. It is security theater at best, an invasion of privacy at worst.
@MsHojat Ай бұрын
I don't use 2FA on anything, but both Steam and Discord (along with Google) have demanded me to provide a mobile phone number anyway, which is quite aggravating.
@BryceWill-mw3il Ай бұрын
To be fair your phone number is only used for your Google account verification. You don't have to use it for 2fa and in fact you can delete from your Google account at any time. Google also allows TOTP 2fa, passkeys, backup codes and over methods of 2fa.
@marcusfleuti2672 Ай бұрын
I think this comment proves that you have a Google Account though ;)
@greatday19 29 күн бұрын
What kind of 2FA are you referring to? SIM based authentication is incredibly insecure, however i wouldn't call it a security theater. Any additional security layer adds some amount of extra protection, because it is an extra think attackers need to bypass. Though authenticator apps i think are a much better option, and physical keys are best. That said, not all accounts need the same level of security. There might be some accounts that one doesn't care about getting breeched, and the inconvenience of an added security layer is not worth it...
@greatday19 28 күн бұрын
@@RamaWick I'd assume it's a balancing act between security and practicality. Further, I've been sensing that a lot of threat models employed by companies treat phones as a trusted device. Granted, they do require biometric verification, which adds a layer of protection in case someone snatches your phone while you're using it, but yeah... I agree that it should at the bare minimum be an available option for those that want it... And that it's stupid that the option isn't even there. Another piece of stupidity that's quite prevalent is when companies do allow security keys as a second factor auth, but it's treated as an *alternative* to sim based authentication, not as a replacement... -_-
@MrElectrifyer Ай бұрын
Literally everything you described is what I've been narrating to family, friends and on internet forums for a while now, and why I avoid 2FA by SMS by all means. Thanks for creating this detailed explanatory video about it.
@greatday19 29 күн бұрын
Great video, as a whole, however, i felt the title incredibly clickbaity and arguably even misleading. The video was exclusively on phone number based authentication, and all the content presented on the topic was incredibly well organized and delivered. I felt that all the facts were presented neutrally, solutions were proposed, but i felt that the perspective offered was balanced and realistic. HOWEVER, SIM based 2FA is not the only form of two-factor auth that exists. In fact, it is the least secure and actively being replaced. Stating that ALL 2FA is scam when referring to only one type can be dangerously misleading, leading people who only see the title or are less familiar to draw faulty, generalized conclusions. Ubikeys were briefly mentioned in the video as a recommended alternative, but that's also 2FA - something that wasn't acknowledged. And why weren't auth apps mentioned at all? It was frustrating to see people in the comments rejecting all two factor authentication when it is an important part in general cyber security... Reading through Rob's replies in the comments it is clear he understands this. I just wish there was an explicit distinction between SMS 2FA and other forms of 2FA...
@robbraxmantech 29 күн бұрын
Please do not miss the point. Sites that DEMAND mobile phones like META are not doing it for security. This is all explained in the first section. You are incorrect to assume that these sites give you an option. There's a long list. I showed you how you can get around Google though which is critical
@greatday19 29 күн бұрын
@@robbraxmantech I agree that sites who demand a phone number and do not offer other options raise all the privacy concerns highlighted in the video. My issue is that the *title* of the video specifically suggests that these privacy concerns exist for ALL 2FA methods and not just phone numbers. To be clear, I take no issue with the messaging or content of the video itself. I simply take issue with how the *title* of the video is worded. You, yourself, state that using ubikeys where possible are one alternative. I'll concede that not all websites support ubikeys as the ONLY 2fa method. However, ubikeys are also 2FA. The title, which states that 2FA is a SCAM, would also imply that ubikeys are also a scam... I believe you would agree with me that physical keys or open source auth apps as multifactor authentication options are very much not a scam? Yet the video title implies that they are... And i noticed this sentiment expressed in some of.the comments - that all 2fa is a scam... I hope this clears up my stans and concern... In summary, I found the video itself quite eye opening, reasonable, and educational. I simply wish it was titled differently... Something like "phone number 2fa is a scam"... Does that make sense?
@greatday19 28 күн бұрын
Well that's annoying... I had typed up a reply but I'm not seeing it...
@greatday19 28 күн бұрын
@@robbraxmantech to summarize my original reply, please let me clarify my comment: I find the *content* of the video well presented, balanced, comprehensive, and quite eye opening. My issue and concern lies exclusively with the *title* of the video. The title states that ALL 2FA is a scam - a sentiment which I have seen expressed by some of the commenters. However, the video content makes clear that the issue lies exclusively in phone number based 2FA. You yourself state that ubikeys, where possible, are an excellent alternative. That's a form of 2FA, one I think you'd agree is NOT a scam. I would have liked to see this distinction made in the *title*, e.g. calling the video something like "phone number 2FA is a scam". My concern is that the way the video is titled could encourage folk who don't watch the video fully to not use *any* 2FA, including ubikeys. Especially considering your actual stance is that phone numbers being required is the scam itself, not two factor authentication as a security principle... I hope that makes sense.
@weirdscix 13 күн бұрын
I agree. The title is very misleading and clickbaity, I knew this before clicking, but I wanted to see what the video contains. Just adding the missing SMS would have been accurate and informative.
@BartFlossom Ай бұрын
Makes me glad I don't have any friends 😂
@invisableobserver Ай бұрын
same here
@mikemaldanado6015 Ай бұрын
I have a really cheap phone with a pay as you go real SIM but under a false name. After using this phone to sign up to various sites, i take out the batter and put the phone away, Unlike the USA every other country i have been to does not make you top up your card ever month. I have had a working SIM here in europe with the same 10 euro balance on it for 2 years and it still works.
@goldbrick2563 Ай бұрын
Why is europe so lax
@fondy44 Ай бұрын
I always joke with friends that the only American I've ever seen successfully buy a burner with cash and activate it without CC was Jason Bourne, and he was outside the US when he did it 😂
@gardeningforfunandlongevit6076 Ай бұрын
Damn if you do and damn if you don’t! There is no hiding from big tech. My take is to do as much as you can to protect your privacy and hope this is enough.
@WeldonWen 11 күн бұрын
Agree, can't achieve 100% privacy does not mean one must not try, they may have some of my data but at least they won't have a complete picture of me. Better let them have a distorted version of you rather than a complete clone of you.
@cx3268 Ай бұрын
This is simular way I use my email. 1 for family & friends, another for JUST business such as banking and the 3rd is others and that 3rd one gets deleted as needed.
@BarrieBrown 24 күн бұрын
Or you could buy a "domestic only Chinese phone" that has no Google at all. Not sure about the SIM card though😢
@MediaMAC871 Ай бұрын
I bought a new phone on your recommendation. I am sure that it’s great but not 100% sure about all of the benefits. Look forward to finding out. The video was convincing for sure, thank you
@HerbieBancock 4 күн бұрын
People used to threaten Radio Shack employees with physical violence when they asked for your phone number. Millennials decided they'd rather give it out to literally anyone who asks and then they wonder why they get so many spam calls.
@geraldabeyawardena5606 Ай бұрын
NHS online is a major user of 2 factor I'd.
@AF_1892 Ай бұрын
S/ Rob, I feel super secure. Our overloards care for us in a good way.
@NielsC68 Ай бұрын
👍❤
@MsHojat Ай бұрын
As much as I agree that it makes sense, I don't think many people are willing to drop using all services that require a non-virtual mobile number. It's making a difficult "demand"/suggestion to them amongst an already extremely small portion of the population (I'm guessing like 1-5%; currently probably closer to the 1%), and would lose even more of them there.
@robbraxmantech Ай бұрын
There's only a few of these and they're bad sites. So up to you. Get zucked or not.
@piotrd.4850 12 күн бұрын
Useless annoyance, though enforced legally in other services like e.g. banks. I get that if that was one of option in state run OpenID equivalent. Another problem is that it increases stack of services which NEED TO WORK to proceed with authantication. If anything in chain breaks - you are out of luck. On the other hand, bogous VPNs or things advertised here suffer from the same issue - introducting another layer.
@suseanneegoulet1033 Ай бұрын
What about the "Magic Login Link" scam? If someone gets your email they then have automaic access to any account that uses this scam "security". Not sure if you may have addressed this yet, if so, please direct me to the video !
@mel3256 Ай бұрын
I MUST use 2FA for business...quickbooks for accounting requires it. Banking requires in from all the major banks in my country, .It's not about choosing to fight back, its a matter of literal being a functional person now. Many banks have limited hours, and require you to do online banking.
@robbraxmantech Ай бұрын
THAT is solved here if you watch the video in full
@tairikuokami 8 күн бұрын
2FA via SMS is insecure for decades, besides it is a great way to steal your account, so it actually decreases your security.
@TheSlickmelon Ай бұрын
Phone Link just appeared on all Windows PCs, and can't be uninstalled.
@iant720 Ай бұрын
I hate the idea of getting a new number or multiple numbers... But seems I have to consider it!
@robbraxmantech Ай бұрын
No one wants to do it but if attacked, we have to attack back
@iant720 Ай бұрын
@@robbraxmantech absolutely. Best defense is offense. Joined your site :)
@mk3suprafy Ай бұрын
Seems this strategy needs some more distilling. The things we need are not quite in place. Laying it out even more simple like an action list and really reviewing how to accomplish each step and why.
@BDnevernind Ай бұрын
Wait till this guy hears about MLMs...
@Rootfury Ай бұрын
I've been scammed once. The only one that I don't mind much is Steam.
@nicksjacku9750 Ай бұрын
Only use Aegis, as its the legitimate 2FA.
@AsusMemopad-us5lk 21 күн бұрын
Brad virtual phone sounds like a great idea. I’d love to know how competitive the pricing is vs Magicjack and whether the SMS and tone dial actually work consistently unlike Magicjack.
@robbraxmantech 21 күн бұрын
SMS is 100% when using MySMS on Brax.Me
@TermiteValley Ай бұрын
I use a Solokey. I love it. Nothing t do with my ID. I touch it, but it's not reading my thumb print.
@gatolibero8329 Ай бұрын
DUO 2FA gives me a ton of info about our users. They don't even realize.
@ikkuranus 20 күн бұрын
I'm sure there is valid reasons to avoid coinbase but your excuse is completely invalid unless you also avoid using all other banks, credit unions, and online crypto exchanges.
@AndrealoreleyPignolo 10 күн бұрын
You're doing a fantastic job! Could you help me with something unrelated: My OKX wallet holds some USDT, and I have the seed phrase. (behave today finger ski upon boy assault summer exhaust beauty stereo over). Could you explain how to move them to Binance?
@rslanna 18 күн бұрын
Man... ThioJoe is looking different nowadays
@MrYossarianuk Ай бұрын
I have an OTP system at work based on free OTP (on Linux) . Its not tied to a phone number ,there is a phone app but it's not tied to your number and also a desktop app too (for Linux )
@unnamedchannel1237 16 күн бұрын
KYJ is the way to go
@Snoods Ай бұрын
Wanna say: I'm a none phone users (for complicated health reason / metal) so i cant use phones and this locks me out of so many things. including monetizing my channel. but no one cares kicker is, under the laws in my country (UK) as my condition is medically registered and the lack of phone possession is a direct issue arising from a disability, covered by law and equal access act, e.g. KZbin is braking UK equality law... so, doesn't matter cus no one will fight on my behalf and KZbin don care (2 years asking them)
@robertlackey7212 6 күн бұрын
I feel like you are dancing around the real threat , being killed or arrested.
@damiangrouse4564 13 күн бұрын
All this sounds like when cancer becomes metastatic...Oh?!...Pun?
@magister.mortran Ай бұрын
The easier way to an anonymous phone number is SIM-card pooling. Get a huge number of friends or co-workers together who will all throw a SIM-card in a bowl. Then everyone will pick a random SIM-card from the bowl.
@elmariachi5133 Ай бұрын
HoPlease make a video about creating a new Google-Account without a knc phone number! Yes, I have seen this working on smartphones without a SIM - but IMHO this is just working because they then identify you by your landline internet IP.
@hiru92 Ай бұрын
same for online payment apps to 😮
@jwcaldw 8 күн бұрын
2fa via SMS is hardly secure.
@tmdx6345 Ай бұрын
SSI shows you IP address and say if you remove you will need to apply again hmm
@Dark_Knight_USA Ай бұрын
Greetings: Phone account purchase scenario: ATT- How can I assist U? Customer - I want 2 start phone service. ATT - OK great. What is Ir phone #? Customer - I do not have a phone #. ATT- I cannot set up service without an active phone #.
@KaryAdams-r4c Ай бұрын
X is doing that, and they keep canceling my account.
@peterbeer8657 Ай бұрын
I don't think I can unzuck not even with your techniques. For starters I don't even have a secure device to for example create a trustworthy password on. My security of person right simple is stripped from me, no privacy, no right all together.
@robbraxmantech Ай бұрын
Security and Privacy are two separate issues
@peterbeer8657 Ай бұрын
@@robbraxmantech Then try setting a secure password without privacy. Privacy is a prerequisite.
@realmstupid-on8df Ай бұрын
KY-C jelly *Another way to screw you* How does google monopoly being split up affect their univeral google logins or any of this tracking?
@Upgrayedddd Ай бұрын
Can't you buy something like VPN accounts? As in verified phone number. Isn't that what some people do? Idk I'm not the tech guy. Seems like the easiest way to solve this problem you have.
@robbraxmantech Ай бұрын
no
@Our1stPlanet 14 күн бұрын
I this was a lot shorter this would be good.
@brunolopes7311 9 күн бұрын
I agree with you in most aspects. but, in the other hand, dont you thing that "privacy" and anonymacy are helping scammers arroud the world stealing money to everybody and commiting crimes knowing that the police can do nothing thanks to guys like you????
@robbraxmantech 9 күн бұрын
Guys like me? So you justify the loss of privacy to all because of this? OK got it.
@brunolopes7311 9 күн бұрын
@@robbraxmantech I like your channel because I've learn a lot from you thats a fact... but privacy is diferent of anonymity... and if you are not commiting a crime it shouldnt be a problem... its not the first time 2F autentications save my life... once, if it weren't for that I would loose thousands euros, because someome had tryed to steal my account ...
@robbraxmantech 9 күн бұрын
Please understand the video. 2FA in itself is not a problem assuming they give alternative options. Please WATCH CLOSELY. Abusive sites are not using your info JUST FOR 2FA. They are using it to identify you for other purposes. So don't be like these kiddy cybersecurity people who think they understand what I'm saying. Obviously I use 2FA. But there are options other than a mobile number that is REQUIRED (like Facebook)
@susangarrard2753 Ай бұрын
Your link to iOS app didn’t work.
@robbraxmantech Ай бұрын
No IOS app in store for iOS 17 so just use the brax.me and then using your browser, you can install a Web App
@fkxfkx Ай бұрын
Oh noes.
@harryhack91 Ай бұрын
I think you are quite outdated on the topic. Most platforms already support 2FA via mobile apps, you don't need to give your mobile phone number. SMS 2FA is unsecure because bad actors can clone your SIM card or even intercept the SMS over the air. The reason why we used SMS is because we didn't had 2FA mobile apps back then, not because the Big Tech wants to know your phone. They already have more valuable information about you available: your browsing history, which they use to show you targeted ads. Also, the KYC is a LEGAL REQUIREMENT for payment platforms, trading platforms and the like. In fact, I think every time money is exchanged in commercial transaction, the seller is required to collect information about the buyer, that's KYC. It's required by The Law.
@robbraxmantech Ай бұрын
What the zuck are you talking about? We have lots of users testing sites. You are absolutely wrong. I even state the actual sites here.
@CitizenOfBabylon Ай бұрын
"Equifax hacked", good one! Don't you mean sold our info? Let's be real.
@MrTeff999 13 күн бұрын
To be real, when a company sells information, it knows its customer. When a company is hacked, it doesn’t.
@KYAg227 Ай бұрын
Its all a scam to force smartphone use as well.
@LiquidAIWater Ай бұрын
One saying in life that is so true. There is no free lunch. Everybody thinks all this is free and for me when they are the product and the digital cage is closing.
@non9886 Ай бұрын
exactly! they want people to use their phones as much as possible. because it is way better to track you and everything you are doing. you will have never such control over your phone as you can have over your pc...
@nosac1230 11 күн бұрын
That's the number one reason and we've gotten to the point where you can't function very well in everyday life without a smartphone. My sister and brother-in-law who have shunned smartphones (they are mid-70s) are finally breaking down to get one after going to a restaurant the other night and finding out that they could not park at l the place without having a smartphone to shoot a QR code. They also travel and have found it increasingly difficult to get thru airports without a smartphone.
@ReflectedMiles 8 күн бұрын
@@nosac1230 Along with the cost reductions that often accompany not having to have employees managing so many things manually, it seems like non-smartphone options should still be available---for a 30% - 50% luddite premium that reimburses businesses for the expense of handling them. Even then, though, KYC is the law for financial institutions, so if someone wants to have access accordingly without having to go to the branch every time, they can either play by the rules or call it all a scam and continue with the inconveniences but also with the costs involved.
@ClayJitsu 9 күн бұрын
thank goodness for this guy. I thought I was the ONLY PERSON IN THE UNIVERSE that noticed that all the companies were suddenly trying to get your phone number and NOBODY CARES. This guy gets it. This guy is my spirit animal.
@RealHomeRecording 8 күн бұрын
I don't like that all my friends shared my phone number with Facebook when they agreed to access the contacts
@frankkatz125 Ай бұрын
I THINK I WANT TO MOVE TO A AMISH COMMUNITY.
@LiquidAIWater Ай бұрын
It seems that no matter which way we turn, we are totally Zucked!😂
@robbraxmantech Ай бұрын
I just gave you techniques to unzuck yourselves
@cutback443 Ай бұрын
unless you're lucky enough to be sitting on a pile of cash... you're FORCED to participate in all of this BS.. if you don't want to live in the street. I HATE IT HERE
@robbraxmantech Ай бұрын
This solution is not expensive. It could be cheaper than your current line
@mel3256 Ай бұрын
I live in a country that requires 2fa to do banking. It is required for government tax accounts, all accountibg software, its not just social media. We need to be functioning people. @robbraxmantech
@mel3256 Ай бұрын
Exactly. I live in a country that requires 2da to do all banking, all government accounts like tax or services, all accounting software, etc. Most people cannot spend alot of time and resources to "fight" this.
@SmallSpoonBrigade 25 күн бұрын
@@robbraxmantech Yes, but it involves the company actually doing the right thing.
@theJellyjoker Ай бұрын
I hate 2FA, I don't have stable phone numbers so I've lost and almost lost a lot of accounts to it. I refuse to use it and will never use a service that requires it.
@AquariusTurtle Ай бұрын
Rob Braxman's virtual phone (the cheapest plan) is perfect if you absolutely must use 2FA.
@teru797 Ай бұрын
then complain about it, tell other people, do the best to be as vocal as possible.
@lilyliciousss Ай бұрын
Same. I refuse to use any services that require it
@Wolfe2x7 Ай бұрын
I lived in a house with no cellular coverage. To login with 2FA from there, I'd have to drive up the road to get the text, and hurry back.
@louistournas120 Ай бұрын
@@Wolfe2x7 I don't have a cellbone.
@SavedByTheBloodOfJesus. Ай бұрын
Rob, thank you for all you do for us. You have taught me so much about privacy. I appreciate you so much. I also use your email, sms and vpn service. Thanks again Rob!
@realmstupid-on8df Ай бұрын
My own dr office hates me cuz i change my number like a meth head with a new idea
@michellewentworth9862 Ай бұрын
*** WARNING *** Facebook now requires a photo that they use for biometric identification.
@itrytobeanonymoustoo5289 Ай бұрын
Zuck Facebook!
@robbraxmantech Ай бұрын
Oh that's ultimate zucking of the population right there
@BillAnt Ай бұрын
You got Zucked!! lol
@markfanny599 Ай бұрын
If this is true, I will cancel Facebook. Zuck them!
@michellewentworth9862 Ай бұрын
@@markfanny599 Try opening a new account and see for yourself what they ask for.
@AtlasBit Ай бұрын
Phone text code is not a security measure. Physical key or time based 2FA
@robbraxmantech Ай бұрын
Exactly. It's not even safe since SS7 can be utilized to intercept. And who can control SS7? The Gubmint.
@BillAnt Ай бұрын
@@robbraxmantech - I've seen some off-shore text companies which will mirror any US phone number using SS7 so all the texts are seen by an attacker. Crazy stuff.
@hasdrubalsosamarquez5430 Ай бұрын
@@robbraxmantech 😂 Gubmint cheese 🧀
@AtlasBit Ай бұрын
@@robbraxmantech True and I worked for some companies they restrict phone number as 2FA only if it's corporate owned since it's not possible to transfer but still restricted
@LiveType Ай бұрын
If possible use a passkey. That's bullet proof unless your device itself gets compromised.
@weekendwarrior3420 Ай бұрын
People just need to RESIST incessant forcing and nudging them into "platforms" by all kinds of stupid businesses. Say "I don't carry a phone due to poor vision, give me another option." We happili lived without "platforms" just 20 years ago!
@piotrd.4850 12 күн бұрын
And even decade ago it was quite bearable!
@weekendwarrior3420 Ай бұрын
Thank you for keeping people aware of the problem. Education is one thing dearly missed in the modern society.
@itrytobeanonymoustoo5289 Ай бұрын
I would replace education with knowledge; Rob imparts knowledge to us. Otherwise I agree wholeheartedly.
@weekendwarrior3420 Ай бұрын
@@itrytobeanonymoustoo5289 wikipedia: "Education is the transmission of knowledge, skills, and character traits". I'll agree that the word is misused (as many other words) in our society, for the purpose of destroying traditional concepts and values.
@lordw9609 Ай бұрын
This is great and eye opening information. Thanks as always Rob!
@klaatubob Ай бұрын
Any company that does any business with the federal government is required to do KYC searches to ensure you aren't using them for money laundering.
@ScorpionCar Ай бұрын
Great video for explaining the differences!
@escapingthenorm2205 Ай бұрын
What's crazy is I recently got a new pixel and degoogled it (formerly iPhone user) and the next month my car insurance went down $50/month with progressive insurance (which is the cheapest its ever been... I drive really fast often. I never had any location services enabled nor had the snapshot thing and also had bluelink deactivated on the car since I got it. Wonder if apple was selling my location data with them? I had even had all the 3rd party apps background location off too. What a strange coincidence.... My insurance kept going up before I degoogled. Anyone else have the same experience?
@stephenkamenar Ай бұрын
isn't my number instantly leaked the moment i sign up for a phone number? you don't think the phone company is selling my data?
@robbraxmantech Ай бұрын
Not my service. I don't ask for ID.
@Provocateur3 Ай бұрын
YT is disappearing comments.
@franklyanogre00000 Ай бұрын
Get revenge in person.
@MrBitflipper Ай бұрын
Thank you, Rob. If that is your real name... ;)
@Derbauer Ай бұрын
2FA in India is impossible to avoid....so you just compartmentalize devices with sim and without, like tablets or laptops. And tablets usually run android with the same google sign in thats on your phone. So really, its only on a linux or windows laptop that you can be without all the identifiers tied into your google id.
@nigelgunn322 Ай бұрын
My biggest issue with phone 2FA is that, when I'm travelling in another country with a SIM card for that country, my US phone doesn't work so I can not receive the text messages.
@robbraxmantech Ай бұрын
Right there is a truly valid reason to say how scammy it is because this would be an obvious fail on the platform's part by requiring this
@bltzcstrnx 7 күн бұрын
Use open-source 2FA such as Aegis. TOTP is an open standard and supported by many sites & open-source apps.
@invisableobserver Ай бұрын
2FA violates the American Disabilities Act because many disabled people do not own or use cell phones or email, there needs to be a class action law suit against companies that are not ADA compliant. it is also a violation to not allow a disabled person to access a website which is what 2FA does. I am disabled, vision impaired and will never own a cell phone and do not use email, I also live in rural area that does not get a cell signal, and is in a wifi deadzone. I have lost access to several websites including online access to my bank account due to 2FA. The other form of 2FA is the unlawful asking of a social security number or part of it or asking birthday or address, which is a violation of PLL laws & constitutional laws. The narcissist that invented 2FA needs to be imprisoned for being a traitor to the U.S. Constitution. Are there any other people on disability that will join with me in contacting the DOJ to file class action law suits?
@miry2510 Ай бұрын
Sorry, but that's a idiotic reasoning. Forcing removal of 2FA for everyone because that someone don't own a phone or e-mail is just plain stupid. Most people use weak, reused passwords. 2FA is the only thing protecting them from account takeover. Here in Sweden everyone is mandatory to use BankID (2FA) to access their bank online. It not, they need to visit the bank i person. Sorry, but security takes president here. I have a bachelors in digital forensics and information security, so I actually know what I talk about in this area.
@sonictech1000 Ай бұрын
Also a 1A violation since some religious groups such as the Amish cannot use these technologies.
@KennyG944 Ай бұрын
If a website if made to be handicap accessible, fine. But no one should be forced to make their website ADA compliant.
@invisableobserver Ай бұрын
@@KennyG944 It is a law that all websites & businesses be ADA compliant, Because so many people are so prideful & ignorant that they discriminate against the disabled.
@robbraxmantech Ай бұрын
@miry2510 You are fooled if you think this. There are many alternate solutions that do not include FORCING MOBILE PHONE as an ID. Amazon doesn't force me to do anything for example. They're behaving rationally and obviously they are concerned about security.
@YSANROCHEOfficialYoutube Ай бұрын
My comments disappear lol. The first time I had TFA, I was so frustrated I almost cried. I knew that this is just to spy and watch you
@403http Ай бұрын
What a click bait.
@amemabastet9055 Ай бұрын
I've never felt safe with the 2FA. It's not secure. And I always at least kept my gmail account contact lists empty.
@miry2510 Ай бұрын
2FA with TOTP/HOTP is secure. It uses standardized cryptographic algorithm for the calculations of the one time password. SMS/e-mail is not secure.
@Seriously_Unserious Ай бұрын
For logins to sites that do banking, investment, finance or payment processors, knowing your real contact info is legit. I agree that having a 2nd number for banking only if you have the money to invest in this,
@PierretteMarie-celineTur-mo5nx Ай бұрын
- The CEO of telegram was arrested in France 😢😢😢😢😢😢😢😢 🤬🤬🤬🤬🤬🤬🤬🤬 0:45
@gblargg Ай бұрын
I've generally assumed requiring a cell number is to avoid people making multiple accounts easily.
@doktork3406 Ай бұрын
It's what they say, sure. What they don't say is that they LOVE phone numbers for advertising reasons... they can link your activities with your phone number and for most people that might as well be an SSN. They'll never say the second part.
@phoneywheeze Ай бұрын
20:15 telegram does not accept VoIP numbers
@chrimony Ай бұрын
This is why I don't use Telegram.
@angryox3102 Ай бұрын
Yep they banned me for doing a voip number.
@robbraxmantech Ай бұрын
OK thanks for the correction. It was listed as OK by somebody using Brax VP.
@teru797 Ай бұрын
@@chrimony exactly. Session is better but they don't allow much customizing of disappearing messages. Signal wants a number but they have a clear track record of not storing info when asked by gov.
@moetocafe 23 күн бұрын
@@teru797 no, they don't have such "track record", the opposite is true - Tucker have said it - some agencies knew he was going to make a Putin interview exactly by his Signal account some years ago, and this is how his first attempt to make the interview was intentionally sabotaged by the US Gov. On the other hand - the CEO of Telegram is under arrest and not the CEO of Signal. I wonder why.... I guess it's hard to comprehend :)
@MuseseekerMan Ай бұрын
The problem isn't that they're tracking us, it's that they're allowed to track us.
@joemann7971 Ай бұрын
The problem is that most people dont care that they are being tracked. Even if people just cared about this matter, we could make a difference and push back on these companies taking away our freedoms.
@Singmeadream Ай бұрын
Wells Fargo bank does this and I cannot turn it off.
@Sb129 Ай бұрын
I just got a different phone number for the stuff requiring it and even then I still stay away from anything that requires it.
@rips1231 Ай бұрын
You pay for an entire other line just for that? Is that the only way
@doktork3406 Ай бұрын
Where i'm from, you can get SIM cards without subscription, personal identification or anything like that. You can just grab one and pay cash. Since you're not sending anything from it, it won't cost almost anything to keep. You could top it off with 5$ cash every year or half year just to keep it alive and receiving, with cash, from some sort of automated boots where you feed the cash and you transfer the credit to that phone number. Maybe i explained poorly, non native speaker, but you understand
@JayDee-x2b Ай бұрын
It's not your phone It's not your data It's not your photos It's not your phone #
@rodvik Ай бұрын
I hate 2fa. email and password is sufficient for anything .
@greatday19 29 күн бұрын
Unfortunately, this isn't the reality for most people... If you keep good password hygiene, then an argument can be made, but the vast majority of people do not. Further, there are ways to bypass password logins. 2FA doesn't make you completely immune - there are ways around that, sure - but it's an added layer of security that significantly reduces possible attack vectors. I agree that 2FA might not be needed on everything, but I wouldn't say that pass and email are sufficient for everything... (To be clear, I'm not talking about SMS based 2FA)
@LloydDunamis 2 күн бұрын
Timestamps 00:00 Preface 02:07 The truth about 2FA 03:26 Pseudo-anonymity 06:23 Are all platforms a threat? 08:47 Credit reporting agency leak 10:25 Contact list leak 12:29 The surveillance database 13:35 An exception: non-KYC phone numbers 15:12 Let's strategize 15:47 Phone #1 - KYC 17:48 Phone #2 - Friends and Family 19:40 Phone #3 - Internet platform 2FA 22:49 What about information from the past 23:37 Summary 24:19 Brax phone
@Kandiplaces 10 күн бұрын
If you get a carrier service, even if you only use it for banking, it will not hide you. Your PII will be associated with the number and thinking it’s private from hackers is not a good assumption. Also, if you use an application that accepts VOIP then please understand that VOIP can be spoofed which means your application cannot guarantee you are secure. A hacker can spoof a mobile number as well, but the banks will not accept VOIP so you’re more secure. Any application like a bank where they insure your assets will require regular mobile for this reason and reject VOIP.
@Dark_Knight_USA Ай бұрын
Greetings: 2FA is 2 internet as plastic. Both R security and privacy risks. Both segregate and oppress. Repeal the Real ID Act and approve the Payment Choice Act. Thx 4 the share.
@Mr_Penguins_Pet_Human 13 күн бұрын
In the EU and UK under GDPR law all entities must delete your data upon your request. This includes data brokers and you can even have yourself removed from Google search results. The exception to these rules are enforcement agencies.
@4bSix86f61 Ай бұрын
Be real, why do websites force you to add a phone for 2SV or they won't give your account back? Not sure if google locking an account and asking for a phone to verify you are not a _bot_ applies.
@MobileDecay Күн бұрын
My bed is gonna eat me alive if I close my eyes! 🥶🥶🥶
@OH2023-cj9if Ай бұрын
Why do bank refuse to use Authenticator Apps? Most companies allow Aegis and similar, but not banks.
@dwdwone Ай бұрын
Some do but it's very rare.
@tomtom1541 Ай бұрын
Banks are old fashioned, so they only allow phone verification. If you wanna use authenticator apps then might have to use Bitcoin instead.
@linsqopiring6816 Ай бұрын
This idea of phone number isolation seems like an awesome tool to fight the creeping privacy threats posed by various entities. I love the idea of having a no KYC number and only using that for pseudo anonymous websites. I'm a little bit murky though on what it accomplishes to have different phone numbers for strong kyc institutions like banks and for your friends and family since they will both know your real identity anyway. You talked about about this at a couple points in the video eg 8:04 and18:50 with regards to leaks to credit reporting agencies but I'm still not sure what the danger is since the only parties that could tap into this would already be those that also know your real identity. Could you please clarify? Thanks in advance.
@robbraxmantech Ай бұрын
Not true about credit reports. Big tech may access credit reports. And don't forget existing leaks like the Equifax leak that's already out there. I talked about that in detail in the video
@linsqopiring6816 Ай бұрын
@@robbraxmantech/videos Thanks again for responding. Yes, I remember well you explaining about the equifax leak and I even made a mental note of it as an example to convince "normies" of our philosophy lol. But I was thinking that leak was in 2017 so I didn't know how it could affect us going forward. You know what would really crystalize the point? If you could provide an example of what information which party would get if you combined numbers 1 and 2 that they wouldn't get if you kept them separate. That would really drive it home.
@AF_1892 Ай бұрын
Also another big question, I do not have a post history on twitter. I'm wondering since I am a public person advertising with my name, should I use a alias handle and not my real name and email for Twitter
@cubansoy 7 күн бұрын
I deny Facebook access to my contacts, and yet they keep suggesting me people I add to my contacts.
@paulbatterbury704 7 күн бұрын
It is your bank that request 2FA via you banking app, not the platform. as you bank already has you number, due to the app you get you notification via you banking app, you approve it. it STOP anyone with your card information using it. I am not sure where you get your information from, but it is very wrong.
@weirdscix 13 күн бұрын
The title is misleading; it should refer to SMS 2FA. I have long advocated for the use of hardware-based 2FA/OTP and the gradual discontinuation of SMS-based authentication methods.
@peterreber7671 11 күн бұрын
I stay away from 2FA for a simple reason. When I travel and my phone gets lost or the SIM card fails I can't get a SIM replacement. Now I can't access anything that requires 2FA.
@Demy1970 12 күн бұрын
I think I’ll have this problem with PayPal, I had a cell number but got rid of, I think they require one I will close account if I have problems, any ideas?
@Jorova7 3 күн бұрын
Awesome information, just all your videos are sooooo long! Could you make them shorter?
Funny superhero siblings
Рет қаралды 51 МЛН
Rob Braxman Tech
Рет қаралды 163 М.