URGENT: 33 Million Authy Users Must Update Their Apps NOW to Avoid Security Risks

URGENT: 33 Million Authy Users Must Update Their Apps NOW to Avoid Security Risks

We’ve got some breaking news that you need to act on right away! If you’re one of the 33 million users of Authy, the popular two-factor authentication (2FA) app, it’s time to update your iOS or Android app immediately. Here’s why this update is crucial and what it means for you.

Why the Sudden Rush?

Authy has issued a critical update to address severe security vulnerabilities that have come to light due to a recent data breach. The breach was reportedly linked to the notorious hacking group ShinyHunters, known for their data dump leaks of various services over the years​​. This group gained unauthorized access to sensitive data, raising alarms about potential risks to Authy users.

Here’s the scoop: the data breach exposed user information that could be exploited if not properly managed. ShinyHunters' attack compromised not just Authy’s infrastructure but also raised concerns about the security of two-factor authentication codes stored within the app​​. This makes the update a critical step to protect your accounts from potential breaches. If you don’t update your Authy app, you might be leaving the door open for hackers to access your 2FA codes and, consequently, your accounts.

What’s Happening with Authy Desktop Apps?

In addition to the mobile app update, there’s another significant change you need to know about. Twilio, the parent company of Authy, has announced that they are discontinuing support for the Authy desktop apps on macOS, Windows, and Linux as of March 19, 2024. This means that if you’re using Authy on your desktop, you’ll need to transition to the mobile app to continue receiving updates and support​​.

How to Stay Safe and Secure

  1. Update Your App: First things first, head over to the App Store or Google Play and make sure you’re running the latest version of Authy. This update is designed to patch the vulnerabilities exposed by the breach and keep your accounts secure.
  2. Enable Multi-Device Support: Authy’s multi-device feature is a lifesaver. It allows you to sync your 2FA tokens across multiple devices, ensuring you’re never locked out of your accounts if your primary device is lost or damaged. Just follow the simple steps to set it up and remember to disable the “Allow Multi-device” option once you’re done to prevent unauthorized access​.
  3. Explore Alternatives: With the discontinuation of Authy desktop apps, you might want to consider other 2FA solutions. Bitwarden, 1Password, and Google Authenticator are all excellent alternatives that offer robust security features. These tools can serve as reliable replacements, especially if you prefer managing your 2FA tokens on a desktop​​.

Why This Matters

In today’s digital age, relying solely on passwords is no longer safe. Data breaches happen daily, and hackers are always on the lookout for vulnerabilities. The recent Authy data breach reminds us of the need to use and update our security tools regularly. Two-factor authentication adds an extra layer of security by requiring access to your physical device, not just your login credentials. This makes it much harder for cybercriminals to take over your accounts​.

Final Thoughts

At Responsible Cyber, we are dedicated to keeping you updated on the latest cyber news and providing you with tips on how to stay safe online. Make sure to update your Authy app and consider enabling multi-device support to protect your accounts. Cyber threats are continually evolving, and staying ahead with the latest updates is your best defence.

So, what are you waiting for? Go update that app and keep your digital world secure!

Stay safe out there,
The Responsible Cyber Team
Back to blog