My yubikey worked on my previous Android phone by way of NFC. But it won't work on my new iPhone 8 Plus. So yubikeys are out.
What other 2FA method is there for an iPhone with LastPass, other than the Grid method? Or I should say, what is the gold standard for when you have an iPhone and want a 2FA method to use with LastPass?
I asked this in the help support ticket system, but they were unhelpful. They said merely to choose from one of the other 2FA methods.
The problem I'm having with the other 2FA methods is that they violate common sense. Correct me if I'm wrong, but I think you should not be using Google Authenticator, LastPass Authenticator, etc. on the same phone that you're using for opening up LastPass Password Manager. Why? Because if someone got a hold of your phone, they could key-log your phone for the master password, and then activate Google Authenticator (or whatever) on that same phone to have it send the code to access your password vault. So the only thing running Google Authenticator does for you is to add one extra step for the bad guys to do, which should be trivial for them if they know about LastPass.
Am I right? What am I missing here? The help support ticket guys didn't understand what I was getting at, even after I asked a few times in different ways. This doesn't seem like it should be that difficult to answer for a company that's supposed to know everything about securing password vaults.
So the only thing left that I see is the Grid method. Unless I'm terribly mistaken.
Can anyone confirm my thoughts, or can anyone explain why I'm wrong?