Robin uses Google Photos to back up her images and has noticed it's having issues with facial recognition features from younger to older. It'll recognize adults rather easily, but the older images of her kids not so much. Leo says that Google's facial recognition measures many physical facial features and it may be that younger to adult represents too much of a difference to connect the dots and recognize them as the same person but as an adult.
2 factor authentication
Don has noticed someone from the Ukraine has tried to log into his Microsoft account on a weekly basis. Should he be concerned? Leo says as long as you don't use the same password, have 2-factor authentication, and have a password manager like Last Pass, there's no way he can get into it. But make sure you have 2 Factor turned on just in case someone manages to guess the password. It will then ask for an authentication code from you through Microsoft Authenticator, which notifies you via text. It's very secure.
Craig is looking for a password manager and wants to sign up with LastPass (A sponsor of the TWiT Network and Studio). But is there anything special he has to do? Leo says that a password manager will not only store all your passwords, but it will also generate them for you. All you need to remember is the master password. Other options are One Password, Dash Lane and Bit Warden. Once you get LastPass all setup, you want to turn on 2 Factor Authentication so that if someone tries to break into or have your password, there is a second way to authenticate that will protect you.
Ben has an issue with 2-factor authentication. Leo says that text message 2-factor authentication isn't safe anymore because "sim jacking" can occur, by bad guys figuring out what your cellphone number is, and then using social engineering to get them to reassign that number to a new SIM. Once they do that, they have control of the mobile device and can control even 2-factor authentication. That's why Leo supports using an authenticator. He uses a hardware-based model called Authy.
Mike needs a good password manager that can also serve as a VPN. Is there any? Leo says he doesn't think that there is one, but that is a great idea. Leo recommends LastPass or 1Password for a good password vault. As for VPNs, there are a lot of options out there, but beware of free VPNs, because to make money, they sell their traffic. So it really isn't all that secure. Leo recommends ExpressVPN. There's also the Tiny Hardware Firewall.
Don wants to use a Yubikey to keep his computer safe online. Leo says that the Yubikey is serious two-factor authentication that enables users to generate a code to offer an extra level of security. It's a physical USB device that spits out a code with a one time password. Leo uses it for his email, Twitter, and a host of other sites online. He wishes his bank would support it. He keeps it on his keychain, using a Type C connector. But he can get a Type A adapter as well.
There's even an open source version called SOLOKEYS, which Leo says is every bit as good.
Pat has a google home hub and she thinks it's been hacked. What can she do? Leo says that it's likely that someone has hacked Pat's Google account. Leo recommends changing her password and turning on 2-factor authentication. Add an account recovery number and email as well. That will keep someone from changing your password. Leo also recommends turning off "share your device" in the settings and set up Voice Match.
Jade keeps getting a security alert from Gmail that someone is trying to open her Gmail account. Leo says that Google will send warnings like that when someone is trying to break in and use her email account. but they usually include a location. If there's a button, DO NOT CLICK ON IT. It could be a phishing scam. Leo also recommends turning on two-factor authentication. That way, even if a bad guy has your password, they still need your phone to complete the login. She also needs to know what gov't phone company she should get her low-income smartphone from. Leo recommends ASSURANCE.
John Paul is having a hard time recovering his Gmail account. What can he do? Leo says it's very difficult to recover your Gmail because there's really no one to talk to. Gmail is a free service and doesn't offer support. If you had the paid version, GSuite, you'd have support. But since this is free, you're really at the mercy of the support documents. One way to prevent this is to turn on 2-factor authentication. That way you get a text message with a code that you input, or you use an authenticator.
Wesley recently lost access to his Gmail. He tried doing password recovery, expecting 2-factor authentication. But Gmail says they can't be sure it's him, so he remains locked out. At least he can log in with his phone because Gmail trusts Wesley's iPhone, which knows the password. Leo isn't sure why the recovery hasn't worked. Perhaps his challenge questions are being answered incorrectly? Since Wesley's phone is working better with Gmail, he should try recovering the password with the phone.