TOTP Apps vs Windows Hello Passkeys for 2FA

randomperson: > I know this advice and do not agree. I need my password manager on all my devices and I need TOTP on all of my devices. The convenience benefit of having your TOTP key in your password manager is huge. I don’t follow the advice myself. TOTP is so insecure anyway I don’t feel the extra inconvenience and potential for locking yourself out of your accounts is honestly worth it. by insecure I mean TOTP can very easily be phished, and the only thing protecting you is a 30 second timer. Phishing is very automated these days, so attackers will be able to put the code in before it expires.