Security News > 2023 > February > Twitter gets rid of SMS 2FA for non-Blue members — What you need to do
Twitter has announced that it will no longer support SMS two-factor authentication unless you pay for a Twitter Blue subscription.
In a blog post released this week, Twitter said that non-Twitter Blue users using SMS 2FA authentication have until March 20th, 2023, to switch to another 2FA method, or it will be disabled.
"After 20 March 2023, we will no longer permit non-Twitter Blue subscribers to use text messages as a 2FA method. At that time, accounts with text message 2FA still enabled will have it disabled."
Elon Musk said they are making this change as they lose $60 million yearly on fake 2FA SMS messages.
If anyone gains access to your credentials, they cannot bypass 2FA even if they steal your 2FA tokens somehow, whether through advanced adversary-in-the-middle phishing attacks or SIM swapping attacks.
Microsoft Authenticator and Authy include the ability to back up your 2FA settings to the cloud so that you can restore your 2FA settings if you lose or wipe your device.