Two-factor authentication (2FA) is a security feature that adds an extra layer of protection to online accounts. With 2FA enabled, users must provide two forms of identification to access their accounts, typically a password and a unique code sent to their phone or generated by an authentication app.
This significantly reduces the risk of unauthorised access to accounts, as an attacker would need both the password and the second form of identification to gain entry. Many websites and apps now offer 2FA as an option to their users, and it is generally recommended to use it wherever possible to enhance account security.
According to Reuters, on Saturday, 18 February, Twitter announced that only Twitter Blue subscribers will be allowed to use 2FA method to secure their accounts starting 20 March 2023.
For account security, Twitter supports two-factor authentication (2FA) via text message, authentication app, and a security key. In the same tweet, the company said 2FA is not required to login, but highly recommend users to use it.
In a blog post that the company’s tweet linked to, Twitter stated that it believes “bad actors” were abusing the phone-number-based 2FA method.
@TitterTakeover tweeted that the reason Twitter changed its policy was because “Telcos Used Bot Accounts to Pump 2FA SMS” and they were losing USD60 million (RM265 million) annually on scam SMS.
Elon Musk, the owner of Twitter, confirmed that is true by replying to the tweet with a simple “Yup”. If you are not a Twitter Blue subscriber and you still have 2FA enabled after 20 March, Twitter will automatically disable it
You can use an authenticator app such as Google Authenticator, which is available on Android and iOS, to secure your account.
To use an authenticator app with Twitter, you need to install the app first. After that, go to your Twitter account, then go to Settings and privacy > Security and account access > Security. Once you’re on the Two-factor authentication settings, select Authentication app and then just follow the instructions.