Meet the Yubikey. A hardware 2FA (two factor) authentication token because people are cunts and may duplicate/clone your mobile phone and render software 2FA pointless.
Now, you may think that sounds cool. But not only do you have to buy one of this at 55 quid, you have to buy two, and hide one inside some kind of orifice or secluded in your vampire lair so that if you lose or damage the first one then you have the second to fall back on.
In practice this works pretty well. Authenticate both units to your online accounts and you can use either to validate your login when you need to.
My issue (as well as probably many other peoples) is that this is more business orientated than for the common consumer. Yes, you can lock down Facebook and Google, but your bank is probably a no-go until they get on board.
Please note, I am happy using biological data, such as fingerprint or face, but again, I think the point is to separate the software from the authentication process in favor of the hardware. I can see how this would be beneficial (because I spent like 120 fucking quid including stickers and the keyring ontop of that) I just wish more of my services supported hardware 2FA.
Hand in hand with this, I have started moving away from Apple’s password manager and started using Proton Pass. Proton Pass also lists the services that I am signed up to by those who accept hardware token 2FA. So I guess one lazy Sunday afternoon, I am going to port all that authentication onto my Yubikeys. Which I will then lose. Or break. Then fuck my life because God hates me. Sigh.