Security News > 2023 > February > Twitter Limits SMS-Based 2-Factor Authentication to Blue Subscribers Only

Twitter Limits SMS-Based 2-Factor Authentication to Blue Subscribers Only
2023-02-18 11:10

Twitter has announced that it's limiting the use of SMS-based two-factor authentication to its Blue subscribers.

"While historically a popular form of 2FA, unfortunately we have seen phone-number based 2FA be used - and abused - by bad actors," the company said.

"We will no longer allow accounts to enroll in the text message/SMS method of 2FA unless they are Twitter Blue subscribers."

Twitter users who have not subscribed to Blue that have enrolled for SMS-based 2FA have time till March 20, 2023, to switch to an alternative method such as an authenticator app or a hardware security key.

The alternative methods "Require you to have physical possession of the authentication method and are a great way to ensure your account is secure," Twitter noted.

According to Twitter's own data, only 2.6% of all active accounts have enabled at least one form of 2FA. SMS accounts for 74.4%, followed by authenticator apps and security keys.


News URL

https://thehackernews.com/2023/02/twitter-limits-sms-based-2-factor.html

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Twitter 5 0 6 2 0 8