2FA-Recovering your KYC Google Auth Keys.

condoras

legendary

Activity: 3038

Merit: 1104

This is what I do. I drink and I know things.

Quote from: pakhitheboss on September 02, 2020, 05:10:13 AM

~snip~

Glad that it helps as it should be, thank you for your words. Cool

Quote from: tvplus006 on September 02, 2020, 09:50:34 AM

Yes, you got it right. I've already used this copy of Google's two-factor authentication several times when I transferred it to a new smartphone. There was also a case when I had to reset the data to factory settings and, accordingly, without a copy of my keys, I would not be able to restore access without the help of the support service.

Great info, I didn't know that. When I get my new phone (still with a back up one), I will try it as well.

tvplus006

legendary

Activity: 2268

Merit: 1655

To the Moon

Quote from: condoras on September 02, 2020, 03:46:18 AM

Quote from: tvplus006 on August 31, 2020, 02:40:14 PM

I use my wife's smartphone as a backup) In my opinion, there is nothing easier than this. Previously, I used my old smartphone for this purpose. I hope I don't have to use this method to restore my account, but a copy of my 2fa Google Auth must be saved.

It sounds good to have a second phone as a way to easily transfer your accounts in any moment but it's not a backup. If I understand correctly, you have two different devices with the same account keys running in both of them?

Yes, you got it right. I've already used this copy of Google's two-factor authentication several times when I transferred it to a new smartphone. There was also a case when I had to reset the data to factory settings and, accordingly, without a copy of my keys, I would not be able to restore access without the help of the support service.

pakhitheboss

hero member

Activity: 2156

Merit: 803

Top Crypto Casino

Recently I upgrade my phone and I was searching for this guide on the internet, most of them which I found are either outdated or not easy to understand.

Thankfully saw this thread and thanks to your guide I can now easily transfer my authenticator's data from my old phone to the new one.

condoras

legendary

Activity: 3038

Merit: 1104

This is what I do. I drink and I know things.

Quote from: tvplus006 on August 31, 2020, 02:40:14 PM

I use my wife's smartphone as a backup) In my opinion, there is nothing easier than this. Previously, I used my old smartphone for this purpose. I hope I don't have to use this method to restore my account, but a copy of my 2fa Google Auth must be saved.

It sounds good to have a second phone as a way to easily transfer your accounts in any moment but it's not a backup. If I understand correctly, you have two different devices with the same account keys running in both of them?

tvplus006

legendary

Activity: 2268

Merit: 1655

To the Moon

Quote from: tranthidung on August 25, 2020, 08:02:24 AM

...
When I was a newbie, I simply scanned QR code and 2FA activation was done like that. I don't back up or if I backup I don't test backup's validity.

I use my wife's smartphone as a backup) In my opinion, there is nothing easier than this. Previously, I used my old smartphone for this purpose. I hope I don't have to use this method to restore my account, but a copy of my 2fa Google Auth must be saved.

skarais

legendary

Activity: 2464

Merit: 2094

Quote from: nakamura12 on August 28, 2020, 12:11:06 AM

Good guidd and also a bit of warning to be careful to your phone. It is much safer if you have to hand written the back up codes even if google auth does have a transfer feature where you can transfer the data to the new phone. Before that, google auth doesn't have that back up feature yet so hand written is the first choice to do and even if it is implemented having second back up is also good if ever you can recover tbe codes on first choice.

You don't have to do the traditional way of handwriting notes to manually save code on a piece of paper, just backup it and you just need to re-import it on a new device. Don't worry if your phone is damaged or lost because you still have a backup of the related email.

condoras

legendary

Activity: 3038

Merit: 1104

This is what I do. I drink and I know things.

Quote from: wwzsocki on August 28, 2020, 03:37:33 PM

even a simple Gmail account is enough to clone accounts or get the backup. I am happy that I can finally stop worrying about it.

It's indeed very helpful but let's not forget. If you don't set Google Auth, as your Google account Two- Step verification method you can't get a thing. So having a handwritten backup of your keys is a MUST.

Quote from: wwzsocki on August 28, 2020, 03:37:33 PM

It is useful and I am happy that I have read it.

Thank you very much, really appreciate it. Cool

I edit the OP with the only pics that I have for Method 1 (courtesy of Cadaver20). Sorry that isn't screenshots but it's better than nothing.

Sanitough

hero member

Activity: 2856

Merit: 674

Quote from: AakZaki on August 28, 2020, 05:34:37 PM

When I started using 2FA, I chose Google Authenticator because it looked simple and looked safer. But over time I wanted to switch to another app like Aunty which has more features than Google.

Google Auth also can't do the previous backup, and that's what made me switch, because I'm worried that if my phone suddenly crashes I don't have a 2FA code backup.

I have been using Authy app ever since and I have never face a single problem, have changed my phone several times already but I never have to worried of not being able to access my accounts in different sites as I have an APP also installed in my computer. So any time I could access my account using this 2FA app even without my phone as all devices I used are link to each other.

Just FYI to those who have not use Authy, the app is simple and safe also.

AakZaki

legendary

Activity: 2338

Merit: 1084

zknodes.org

When I started using 2FA, I chose Google Authenticator because it looked simple and looked safer. But over time I wanted to switch to another app like Aunty which has more features than Google.

Google Auth also can't do the previous backup, and that's what made me switch, because I'm worried that if my phone suddenly crashes I don't have a 2FA code backup.

erikoy

full member

Activity: 686

Merit: 125

I am always having a hard time in 2FA and it may be safe to our part especially securing account but it may als be the reason that I can't access my account especially if the device I am using will be lost. I know that it is for security but I prefer to use the text messaging in my accounts where log in requires to get the code from text message. This is I guess an easy way for me to access my account and getting secure. Same as google authenticator but the problem is one may having difficulties in reseting the password if forgotten.

wwzsocki

legendary

Activity: 2744

Merit: 1708

First 100% Liquid Stablecoin Backed by Gold

Quote from: condoras on August 25, 2020, 06:16:37 AM

I hope this thread will be useful and easy to understand from anyone around. Thank's and BTCe-safe.

It is useful and I am happy that I have read it.

As many members here, I am also using Google Authenticator for my 2FA security settings and wondered already many times, especially when logging in using 2FA, how complicated it could be to get that account on a new phone or to login to exchanges when problems with phone start to occur sooner or later? Of course, I have my codes written on paper and saved but still, I was afraid it will be a lot of problems to get it working.

Now I am delighted one can say Cheesy

. Not joking here because we have to depend on those things and if something goes wrong many times a lot of money could be lost or get stuck in a volatile market.
I am happy that it is easy as it should be and even a simple Gmail account is enough to clone accounts or get the backup. I am happy that I can finally stop worrying about it.

condoras

legendary

Activity: 3038

Merit: 1104

This is what I do. I drink and I know things.

Quote from: DdmrDdmr on August 28, 2020, 05:47:03 AM

Apparently, Apps can enable the FLAG_SECURE setting to avoid screen captures on the App, or certain screens on the App, reducing the risk of a (another) malicious App being able to issue screen captures from Google Authenticator, whilst running in the background.

See: https://wwws.nightwatchcybersecurity.com/2020/03/03/google-authenticator-for-android-allows-screen-capture/

People reported it as a bug (so as to say, it seems to have been there since 2014), and it appears to be fixed on Android, stating that it cannot capture the screen when you try. Nevertheless, I’ve also tried it on an Iphone and managed to capture a screenshot. I’ve checked on the App store, and the current version on IOS, version 3.0.1 for the App, seems to be from September 2018, which oddly lacks updates since then.

So it seems that the only way is to follow the old school method to post pics, thus our eyes will go crazy! 🤪
It's indeed quite odd that updates lack for this app... Btw, thank's for sharing this info!

DdmrDdmr

legendary

Activity: 2338

Merit: 10802

There are lies, damned lies and statistics. MTwain

Apparently, Apps can enable the FLAG_SECURE setting to avoid screen captures on the App, or certain screens on the App, reducing the risk of a (another) malicious App being able to issue screen captures from Google Authenticator, whilst running in the background.

See: https://wwws.nightwatchcybersecurity.com/2020/03/03/google-authenticator-for-android-allows-screen-capture/

People reported it as a bug (so as to say, it seems to have been there since 2014), and it appears to be fixed on Android, stating that it cannot capture the screen when you try. Nevertheless, I’ve also tried it on an Iphone and managed to capture a screenshot. I’ve checked on the App store, and the current version on IOS, version 3.0.1 for the App, seems to be from September 2018, which oddly lacks updates since then.

condoras

legendary

Activity: 3038

Merit: 1104

This is what I do. I drink and I know things.

Quote from: dimonstration on August 28, 2020, 12:19:31 AM

There is substitute way for this method, You can turn off the 2FA security on the exchange since you can still access the Authenticator app in the old phone then request for a new 2FA key once you have new device that has Authenticator installed. It's advisable if the condition of the old phone was unstable because the old device might get broke anytime considering that you borrow your friends phone to access your exchange and you don't have new device.

You are correct, you can do that as long as you trust your friend (lol)

Quote from: dimonstration on August 28, 2020, 12:19:31 AM

The method 2 is a great idea. I don't have any idea that I can access my authenticator data on my email that I used on my account.

Tbh I didn't know that either but my friend use a lot this way for recovering or store data from several (if not all) app's. So we try for Google Auth and it works.

Quote from: Asuspawer09 on August 28, 2020, 03:02:56 AM

You could totally import it from different phones when you have a new phone but if you lost your phone is a different story, I've searched on youtube last time what method I can do but you need to do it before you lost your phone, for example, Facebook, which have a backup could that you could use when you lost your google authenticator, etc.

As far as I know, if you lose your phone and you don't have your recovery 16-digit keys, then you can't do anything to recover them. Sad

Quote from: Asuspawer09 on August 28, 2020, 03:02:56 AM

There are so many authenticators already that is getting recommended by a lot of users but I only know google but google still a good choice.

I check all the references from our fellow members and it seems that Aegis is for now the best, safest, and stronger (in the matter of choices/ options) Authenticator app. Ofc Goggle will always be Google, whatever that means to anyone...

Quote from: Asuspawer09 on August 28, 2020, 03:02:56 AM

Is it a new update from Google? Are every code save in your Gmail can be recovered or saved?

Idk if it's a new update but you can recover every single code/ account if you have enabled as 2 Step Verification the Google Auth in your Google account.

It seems that my phone can't take screenshots from Google Auth for some reason. I get a message saying that the app doesn't permit screenshots... Undecided

That's new for sure!
If can someone verify this or can take some screenshots for Method 1 (without any information such e-mails on them), it will be appreciated.

Asuspawer09

sr. member

Activity: 1820

Merit: 436

Quote from: condoras on August 25, 2020, 06:16:37 AM

~

It also happened to me by I didn't recover my code at all Sad

For some exchanger that I use google authenticator some of it when you log in you need to use the code after logging in but it doesn't have an option when you lost your code, etc. and the support is crap.

You could totally import it from different phones when you have a new phone but if you lost your phone is a different story, I've searched on youtube last time what method I can do but you need to do it before you lost your phone, for example, Facebook, which have a backup could that you could use when you lost your google authenticator, etc. There are so many authenticators already that is getting recommended by a lot of users but I only know google but google still a good choice.

Is it a new update from Google? Are every code save in your Gmail can be recovered or saved?

ice18

hero member

Activity: 2492

Merit: 542

Nice info heres my experienced I ended shifting into authy app after I changed my phone last year and retrieving so many 2fa codes in almost 30+ websites and its ridiculous google auth has no backup feature that time and everytime I changed my phone I always ended like this, thanks for the update op.

dimonstration

hero member

Activity: 2716

Merit: 698

Dimon69

Quote from: condoras on August 25, 2020, 06:16:37 AM

Method 1: You download the Google Auth to your new phone, you open it and you go to app's "Menu" (the three vertical dots on the top right corner of your phone's screen).
You select "Account Transfer" and a message appears asking you if you want to "Export" your accounts (by creating a QR code which you will scan with your new phone) or to "Import" them (by scanning the QR from your previous phone). Doesn't matter if the camera of your old/ damaged phone doesn't work. You choose "Export accounts", scan the QR with your new phone and you are done.

IMPORTANT NOTE If your phone is lost or it can't be open after damage, this method is not possible. You need to have your old device working (at least the phone's screen).

There is substitute way for this method, You can turn off the 2FA security on the exchange since you can still access the Authenticator app in the old phone then request for a new 2FA key once you have new device that has Authenticator installed. It's advisable if the condition of the old phone was unstable because the old device might get broke anytime considering that you borrow your friends phone to access your exchange and you don't have new device.

The method 2 is a great idea. I don't have any idea that I can access my authenticator data on my email that I used on my account.

nakamura12

hero member

Activity: 2268

Merit: 669

Bitcoin Casino Est. 2013

Good guidd and also a bit of warning to be careful to your phone. It is much safer if you have to hand written the back up codes even if google auth does have a transfer feature where you can transfer the data to the new phone. Before that, google auth doesn't have that back up feature yet so hand written is the first choice to do and even if it is implemented having second back up is also good if ever you can recover tbe codes on first choice.

libert19

hero member

Activity: 2520

Merit: 952

Good to see Google authenticator finally got an update, it had been ages. I have moved to Aegis though.

condoras

legendary

Activity: 3038

Merit: 1104

This is what I do. I drink and I know things.

Quote from: DdmrDdmr on August 26, 2020, 06:40:00 AM

Quote from: condoras on August 26, 2020, 06:13:58 AM

<…> I believe that Cadaver is aware of it. <…>

Aware and complacent with those/his 2FA code showing (+ 2 email addresses tied to them)?
If they are his, I don’t get why it’s taking so long to take them down (i.e. erase the original image). If on the other hand they are dummy codes, generated to exemplify, then perhaps a note would help to avoid assuming they are his codes being self-leaked and propagated.

Well, until he verifies what is it, I will remove them.

Quote from: DdmrDdmr on August 26, 2020, 06:40:00 AM

Quote from: condoras on August 26, 2020, 06:13:58 AM

I know but then the thread will be bigger and (I guess) harder to read it...

Not really. If the images are not massive in size, and they are meaningful to describe the procedure, I doubt anyone will complain (besides the quality thingy).

My pic/ photo editing skills are limited but I will try and do my best. I can promise anything though... Lips sealed

Topic: 2FA-Recovering your KYC Google Auth Keys. (Read 546 times)