What protects 2FA secret in a data leak?
My first around here so go easy!
I recently migrated to one password, changed all my passwords to strong unique ones and enabled TOTP 2FA where possible.
Everyone tells you to enable 2FA via an app where possible as it’s more secure than sms 2FA because of sim swapping.
But in a data leak, which would reveal usernames, passwords etc, what protects the 2FA secret for any given service from being leaked? Meaning all someone has to do is enter my 2FA secret into any of the many apps to obtain the TOTP?