This is also where any email-based 2FA codes will be sent.įor the LastPass sites not to be kept, go to each site and submit a data deletion request and/or delete the account, where possible.ĭelete all LastPass vault entries (also from deleted items) + delete LastPass account Have all Google Voice 2FA texts forwarded to the Proton mail account, which requires FaceID on the iPhone to access. If TOTP is not supported, then use a Google Voice number for SMS, or email if necessary.
If 2FA is available, implement it using a TOTP via KeePass and remove email/SMS if possible.
My action plan (which I've already started) is:Ĭreate a 1Password* account for storing passwordsĬreate a KeePassXC* local vault for 2FA & recovery codes, plus security question answers (random) => I'm syncing this between devices via encrypted iCloudĬreate a Proton account for storing secure documents (Proton Drive)įor the LastPass sites to be kept, go to each site and:Ĭhange the password (random characters of all types allowed) I'd love to hear y'all's thoughts and suggestions. So, given the LastPass situation, I've decided to move off of it after 10 years as well as upgrade my security standards.
0 kommentar(er)
