True. While it’s definitely more secure than their other 2FA offering (storing them with your passwords), it’s still the same developers making both - so it still feels like putting all my eggs in one basket.

For IOS I can see this as a valid option, because unless you are willing to trust Microsoft, Google, or Authy with your 2FA, which I personally don’t think one should, then you haven’t got too many options.

But on Android there are plenty others that are known to be reliable, Aegis for example, so the value proposition is lessened for me at least.

Cool idea for anyone who doesn’t already use Bitwarden for their passwords, but I would be awfully sceptical of having my passwords and 2FA codes stored on the same service - only one breach required to royally screw me up

Oh great they get to collect and make money off of “anonymous technical data” for years, and their punishment for doing all that is to delete the data, and swear they won’t collect anymore of it for the next few years??

They already made their money off of people’s data! This isn’t a meaningful punishment, hell it’s barely a slap on the wrist.

If you told me this time last year that France would be the European country to criminalise the use of encryption, I would’ve thought you crazy