Unfortunately, this deal is no longer available
Google Titan Security Key - FIDO U2F - Bluetooth & USB Bundle - £23.46 (With Code) @ Google Store
768° Expired

Google Titan Security Key - FIDO U2F - Bluetooth & USB Bundle - £23.46 (With Code) @ Google Store

£23.46£5053%Google Store Deals
78
Posted 10th Dec 2019Shipping from IrelandEdited by:"smiggy"

This deal is expired. Here are some options that might interest you:

1x Bluetooth security key.
1x USB-A security key (with NFC, according to the specs section)
+ cable & USB-C adapter.

£50.00
-£26.54 using B-TITAN35OFF
= £23.46 delivered inc. VAT
Community Updates
If you click through or buy, retailers may pay hotukdeals some money, but this never affects which deals get posted. Find more info in our FAQs and About Us page.

Groups

Top comments
have i just bought a item i never heard of before :O
sam_of_london10/12/2019 21:46

Is there any recovery option if you lose both the keys ?


If this is even a possibility save your money
Hell of a lot of misinformation in this thread.

What happens if you lose them?
You can use normal 2FA (Google Authenticator, Authy), or a set of recovery codes, or a number of other methods. You will not be locked out of your account.

Why not use SMS? It can be intercepted with sim swapping attacks. It's unlikely you would be a target, but it's not impossible.

Why not use Google Authenticator? Use it as a backup or when you can't use the Titan key, but the codes can be intercepted and re-used (within 60 seconds). U2F (the protocol backing these keys, and Yubikeys, etc.) will only work on the website you are on. If you go to fakegoogledotcom, the code they get will only work on fakegoogledotcom, not the real site.

Only works with Google Chrome. No it doesn't. It's an open standard.

I don't think I need it. Anyone with any accounts of importance tied to their email needs some form of 2FA. Most people can have their life turned upside down if their email gets compromised. It's the recovery process for your bank, social media, shopping accounts, etc.

If they've got my password, this won't stop them. Yes it will. Passwords get reused and guessed. These do not. Your bank issues you one of those little devices that spit out a number, and they trust that. This is a souped up version.

If I leave it plugged in, any site can get the code without me knowing. No they can't. You have to press the button. Or just don't leave it plugged in.

It's inconvenient. So is having your bank account drained because you used the same password for your email on shadypiratedmoviesdotcom and they got hacked, and then someone used those to reset the password on your bank's website (bit of hyperbole here as they'd need your banks 2FA).

I work in IT and these are overkill. Then you're a fool.
Edited by: "bobcheda" 11th Dec 2019
78 Comments
Thanks. Ordered!
Is there any recovery option if you lose both the keys ?
Cheers, ordered
sam_of_london10/12/2019 21:46

Is there any recovery option if you lose both the keys ?


If this is even a possibility save your money
I've been thinking about these kinds of devices for a while now. I'm already two factoring all of my important accounts so this will be a nice addition.

Heat
have i just bought a item i never heard of before :O
Will this stop google reading all of my emails to “sort them”
Thanks ordered
Can you use these on anything else apart from google, Facebook or Dropbox
Great price, HOT!
Why not just use the free app?
mattybayston10/12/2019 22:50

Why not just use the free app?

Err yeah I agree , why not just use Google Authentiucator app on your smartphone?

Saves you losing a key and you always have your phone with you,. Even if you use anohter laptop etc you can use the physiucal backup codes to acess

- so what is the point of this key? - to look good?
mattybayston10/12/2019 22:50

Why not just use the free app?


Authenticator apps are either specific to their service/website or simply give you a code that you type in on a website. If you type the code in on a phishing/fake website login prompt you will have granted the scammers full access to your account.
Edited by: "SUMMONER" 10th Dec 2019
Would this work on Amazon and PayPal? These are the main sites that I would need extra security for.
Edited by: "mario999" 10th Dec 2019
mario99910/12/2019 23:25

Would this work on Amazon and PayPal? These are the main sites that I …Would this work on Amazon and PayPal? These are the main sites that I would need extra security for.


A list of companies/services and what authentication methods they support is available here: twofactorauth.org

To the best of my knowledge neither Amazon nor Paypal support hardware keys. In fact when I last tried 2 factor on a Paypal Business account it was clashing with their own Paypal Here app, which is used to take debit/credit card payments via their portable card reader.
Edited by: "SUMMONER" 10th Dec 2019
PayPal currently only does 2FA via the Authenticator smartphone app and/or SMS.

Years ago, PayPal used to offer an RSA SecureID style keyring fob which showed a PIN which changed every 30 seconds or so. They discontinued that.
Is the NFC now better implemented? I just read a slightly old review which said there were issues with NFC and using the security on Android phones.

Are they bringing out a newer version in the near future? Otherwise is this just a deal to get better uptake of users?

It has been mentioned in previous Google posts about Google dropping stuff. Is this likely to stay the course of time for a few years?

Cheers.
Just seen this on Amazon is it the same idea
.amazon.co.uk/Key…8-7
sam_of_london10/12/2019 21:46

Is there any recovery option if you lose both the keys ?


Looks like this is possible, by contacting Google, by may take up to 5 days - this is my understanding anyway (don't own one though.)
Doesn't work with Lastpass.
Ordered, thanks OP
thetarget10/12/2019 23:53

Is the NFC now better implemented? I just read a slightly old review which …Is the NFC now better implemented? I just read a slightly old review which said there were issues with NFC and using the security on Android phones.Are they bringing out a newer version in the near future? Otherwise is this just a deal to get better uptake of users? It has been mentioned in previous Google posts about Google dropping stuff. Is this likely to stay the course of time for a few years?Cheers.


Was it the Techradar review from August 2019?
That's the one I've just read, where they cannot get this to work on their Android phones, or with NFC. The extra security is an excellent idea, but I won't be buying until I find out if the above problems have been fixed.
SUMMONER10/12/2019 23:06

Authenticator apps are either specific to their service/website or simply …Authenticator apps are either specific to their service/website or simply give you a code that you type in on a website. If you type the code in on a phishing/fake website login prompt you will have granted the scammers full access to your account.


Hmmm... you're giving me ideas.

I GENUINELY came up with SMS codes as a means of 2 factor authentication back in... 2001 (my uni dissertation, sits in the library vault at Hallam Uni in Sheffield) and did nothing useful with it. (Yeah, I know, that was an easy path to riches ignored, oh well) I can think of a few ways to toughen up SMS though now you mention it's holes... hmmm...
We get ripped off again, these were available for $9.29 on the USA site with the code, they are obviously sold out now.

engadget.com/201…le/
SUMMONER10/12/2019 23:06

Authenticator apps are either specific to their service/website or simply …Authenticator apps are either specific to their service/website or simply give you a code that you type in on a website. If you type the code in on a phishing/fake website login prompt you will have granted the scammers full access to your account.

They also would be having to watch you in real time as that code would be useless in 30 seconds time. Considering you will be using it with your bookmarks and / or phone apps anyway, it is incredibly unlightly.

More critical services need to enforce 2FA on their services though as it would greatly lower the amount of password theft based attacks.
Bought it. Not sure why. Just think that it may come in handy in the future for increased security on some of my accounts.
New web WebAuthn standard will make these obsolete google.com/amp…ity
scarl11/12/2019 07:11

We get ripped off again, these were available for $9.29 on the USA site …We get ripped off again, these were available for $9.29 on the USA site with the code, they are obviously sold out now.https://www.engadget.com/2019/12/10/google-titan-security-key-sale/


$15 for the bundle + $3.99 shipping to US address, shame the C Key was sold out. Thanks for pointing me in that direction though, bought 1. Have shipped to a friend in US...Only problem, why did I buy any?
Edited by: "catch22" 11th Dec 2019
John-Mcevern11/12/2019 08:09

New web WebAuthn standard will make these obsolete …New web WebAuthn standard will make these obsolete https://www.google.com/amp/s/www.theverge.com/platform/amp/2019/10/14/20913456/google-titan-usb-c-security-key-yubico-yubikey-nfc-bluetooth-fido-os-compatibility


They had them in their USA store but were sold out..
freyabo11/12/2019 03:47

Was it the Techradar review from August 2019?That's the one I've just …Was it the Techradar review from August 2019?That's the one I've just read, where they cannot get this to work on their Android phones, or with NFC. The extra security is an excellent idea, but I won't be buying until I find out if the above problems have been fixed.


Yep. That was the review I read. I think these were released in 2018. Appears some teething issues. Maybe rushed a bit too soon to market for consumers? Could be due to so many Apps and systems; it is a little difficult to get a one fits all device straight away?

Seems a great idea but if it isn't quite there yet. Don't want to buy in and a hardware upgrade could be needed to fix the issues. Bt like with the MSI B450 motherboards. They didn't install enough memory for BIOS updates and so they had to cut out graphics for the update for that particular board to be able to use the new AMD CPU chips. A few months back.
cb-uk11/12/2019 00:05

Doesn't work with Lastpass.


You need a premium subscription of Lastpass. I have recently switched to Bitwarden, it is $10 for 12 months and it does support 2FA.
lexwon11/12/2019 09:11

You need a premium subscription of Lastpass. I have recently switched to …You need a premium subscription of Lastpass. I have recently switched to Bitwarden, it is $10 for 12 months and it does support 2FA.


Thanks for that - very useful
It would be great if these keys supported Windows Hello but as far as I'm aware they don't (and the bluetooth key has been blocked due to vulns). I ordered then cancelled immediately after finding this out.

Edit: It might work now?
support.apple.com/en-…393
Adds support for NFC, USB, and Lightning FIDO2-compliant security keys in Safari


support.google.com/acc…=en
Edited by: "rico83" 11th Dec 2019
Carson_Official11/12/2019 07:16

They also would be having to watch you in real time as that code would be …They also would be having to watch you in real time as that code would be useless in 30 seconds time. Considering you will be using it with your bookmarks and / or phone apps anyway, it is incredibly unlightly.More critical services need to enforce 2FA on their services though as it would greatly lower the amount of password theft based attacks.


I had a small business customer last year that had the contents of his Microsoft Exchange account stolen (emails, contacts, calendar etc), also in his case I believe he didn't have even basic 2 factor authentication switched on.

They got him with a simple phishing email that asked him to 'authenticate himself' in order to read the encrypted email he had received. He should have known better not to click on links in emails, but did it anyway. The website that opened had a very nice looking menu asking him to choose a method of authentication e.g Microsoft account, Google account, Facboook etc. and once he had typed in his credentials it was trivial for an automated script to run and steal all emails, contacts and calendar entries off the Exchange account. In fact it took less than 48 hours for his clients to start receiving fake invoices and notices that all future payments should go to a different bank account.

I am convinced that the only reason he even noticed something was seriously afoul was because the thieves deleted everything in the Exchange account. If they had not done that he would have likely just carried on as normal.
Edited by: "SUMMONER" 11th Dec 2019
Avatar
deleted72028
senthu2310/12/2019 22:07

have i just bought a item i never heard of before :O


I've just bought an item I have no idea what it is, cos it's says Google, on it.
Anyone who leaves reviews on Google maps should check their email for 20% off Google store. Excludes Pixel 4/XL and stadia. Expires tomorrow!
BB89.11/12/2019 13:53

Anyone who leaves reviews on Google maps should check their email for 20% …Anyone who leaves reviews on Google maps should check their email for 20% off Google store. Excludes Pixel 4/XL and stadia. Expires tomorrow!


Damn, I have one and didn't use it.

I'll see if the order can be cancelled and reordered.

Edit: already dispatched.
Edited by: "KetanS" 11th Dec 2019
Post a comment
Avatar
@
    Text