Awesome video and info! Great tip with locking down the email account!

Thanks for the video. I use LastPass and want to add Yubikey 5 but when I try to add the key to Yubikey #1 and push the button, nothing is generated and inserted into the space. Any ideas why?

Which password manager are U using now?

The needs to be a way of resetting I had a software OTP on a usb drive one day the drive stopped working and the are 3 accounts that need me to send in a copy of my passport before they will reset it my email is locked down with hardware keys so the needs to be a way for any accounts to KNOW you have a secure email so they can sent a reset code and if your email is NOT locked down then you have to send send in a copy of your passport / drivers license or birth certificate.

Bitwarden?

can the same YubiKey be used for two different LastPass account-ids e.g. one for myself, one for my child?

Two-factor authentication uses backup codes in case you lose your phone or it's damaged or wiped. Does LastPass have backup codes for two-factor authentication?

Just a reminder to some people you can call most of your cellphone providers and they will let you put a code/pin on your account that wont let you transfer your phone number unless you provide that said code to the associate your on the phone with.

Nice video! 👍🏻

wait how can you get in without security key?

Curious which password manager he just switched to...

Thank you great video

What if I don't have a smartphone?

dashlane

You can't seem to take off sms lastpass backup so this video is useless?

Nice job on the video. As I already have a Yubikey, this all makes sense. Yes, my Google account is secured using U2F. Still, it doesn't seem very smart of Lastpass to allow MFA to be bypassed using email. I would opt out of that it I could. Just make sure you have a backup of your QR code or a second key with it on. At least you have physical possession of those things. I don't actually use Lastpass. The solution I use allows me to keep only local copies of my database. There is no copy in the cloud. Keeping the database in the cloud is another practice that scares me a bit. I would keep your passwords there, but not mine. I will go along with you that Lastpass is better than a pen and paper....properly done, that is.

Microsoft Authenticator is much better than Goolge's... because, Google Auth does not have the option to restore your accounts in the even that you get a new phone.. Even if you restore your Google apps, it will only restore the app itself, but not the data... Microsoft Auth has the ability to restore ALL the data when you install the app on another phone... I learned this the hard way and I will NEVER use Google Auth again.

9:12 kek

Keeper

Please change your thumbnail. Nothing is really hack proof this is just misleading.