It’s an hour past the switchover time and nothing happened. There is no 2FA enabled on my account.
I just turned 2FA on in the app early this morning. No prompts for relogin. Also no options for 30 day duration. Just figured I would turn it on before the deadline to avoid any lockouts.
Since I had numerous courses in Operational Security and use strong securty, I most likely will disable 2FA later on.
It is appreciated that we have an option to turn it off. The only damage I can cause is to my individual account. I take that responsibility seriously.
I just got my first 2FA prompt when trying to log into Live View tonight.
It took over 5 minutes to receive the Wyze email with the code.
5 minutes is way too long.
Wyze needs to speed up the email response time.
Wyze’s servers log me out of Live view several times a day.
I don’t want to be hassled with this long email wait time over and over and over each day.
Unfortunately I see many websites that are too slow in sending 2FA codes, such as Twitch, Comcast, CVS, etc.
But I know there are other websites, like Treasury Direct, that send the 2FA email almost instantaneously.
.
2 Likes
Just turned it off. I don’t need anyone telling me what I need to do, I run a very secure site through a VPN. 2 f authentication is a joke.
1 Like
I had the same experience. Email response way to slow. Changed it to text message and I NEVER RECEIVED a verification message. I turned it off. Seems like you guys aren’t prepared to turn this on yet?
Does ‘trust this device’ depend on ‘local storage’ of identifying data in the browser?
Or is it a device ‘fingerprint’ stored on the authenticating server?
Or?
1 Like
This is directly from the email Wyze sent me in response to my concerns. They are saying it is a 30 day reauthorizing even when you put the trust device.
Two-Factor Authentication (2FA): While 2FA can be seen as an extra step, it significantly enhances the security of your account by adding an additional layer of protection. This is especially important given the increasing number of cyber threats. We understand the inconvenience, but it is a necessary measure to ensure the safety of your personal information.
30-Day Expiration: The 30-day expiration policy is in place to ensure that your account remains secure. Regular re-authentication helps to verify that the person accessing the account is indeed the authorized user.
Apple Sign-Outs: Frequent sign-outs by Apple can be frustrating. This is often due to Apple’s security protocols, which are designed to protect user data. Unfortunately, this is beyond our control, but we recommend ensuring that your device’s software is up to date to minimize these occurrences
Thanks @nadejda813 for the information.
I was hoping to use the trusted device option. Guess I will opt out entirely.
I don’t care if someone hacks my camera.
All it is doing is looking through my living room window at my front yard.
A hacker could see the same thing if they stood on the sidewalk in front of my house.
The only possible security issue is Wyze does not provide a way to disable the microphone in the camera. So in theory a hacker could listen to conversations in my living room.
So I have taped over the microphone hole to help mute the voice/sound detection. I also rarely am in the living room with my wife carrying on conversations.
Also, the TV is always on which would drown out any conversation that might be detected by the camera.
1 Like
I agree, but I suppose there’s a chance that advanced hackers could find a security hole in the firmware that could allow them to access the non-camera devices on your network. It’s possible to create two networks if that is a concern. That said, I am disabling 2FA! Assuming it ever appears on my account.
If the cameras are that bad/hackable perhaps they shouldn’t be in service. I made the decision to switch over to Arlo cams because of the multitude of issues I’ve been having.
1 Like
That assumes an attacker has access to your wifi network and if that’s true, you have bigger problems.
1 Like
I don’t understand why people don’t like 2FA, I have been using it on WYZE since it first came out, I get the number via text.
All my Banks, credits unions, insurance companies, medical facilities and many other places require me to use 2FA to log in, takes all off 3 seconds…
1 Like
I don’t have a problem with 2FA and use it where I can. However, I prefer to use an authenticator app rather than email or text. Email and text are much less secure but most banks and business don’t support the apps. Probably more difficult to implement.
1 Like
I thought you were going to tell a joke.
I like 2fa where warranted.
I’ve always thought that is insane too. Email and SMS are not encrypted at all. SMS is particularly vulnerable, not just from things like sim-swapping attacks, but from things similar to “stingrays” that can fake being a cell tower, and intercept all unencrypted data to and from a mobile phone, thus being able to intercept a 2FA SMS code and log in. And stolen money isn’t covered by FDIC insurance as many people believe (though they may [or may not] be insured separately). I really don’t understand why almost no banks support authenticator apps. It’s crazy they only support the most insecure MFA methods. 
The main service that should be the most secure…
1 Like
Me neither. I have been using it since it was first introduced and I never had to enter the code as long as I don’t log out from the account.
The two Factor is no good to nobody if your phone is stolen you can get a code back on that. stolen phone that somebody stole from you and ask for a password reset. It will send a code and all you have to do is hit that code and you’re back in somebody else’s account regardless if it’s a two-factor or just a regular account without two-factor so it’s no good to nobody. I don’t even use it. I recommend nobody to use it. That’s how they get into your account. Thank you and have a good day
1 Like
2 Likes
You’ve got bigger problems than your WYZE account. 
1 Like