The move is aimed at improving the security of Twitter accounts, but it will require users to switch to alternative authentication methods.
Last month, Twitter announced that it would no longer provide SMS-based two-factor authentication (2FA) to non-paying members. The change is set to take effect on March 20, 2023, and it is part of Twitter’s efforts to improve the security of its platform.
Two-factor authentication is a security feature that adds an extra layer of protection to user accounts. With 2FA enabled, users need to input a security code along with their password to access their account. Twitter’s 2FA feature has traditionally relied on SMS-based codes, but this method will no longer be available to free users.
The reason behind Twitter’s move to discontinue SMS-based 2FA for its non-paying members is the company’s apprehension regarding the security of phone numbers. As per Twitter, the phone-based 2FA has been “abused by bad actors,” which has led the company to decide to eliminate this feature from its free accounts.
To continue using 2FA on Twitter, non-paying members can either sign up for Twitter Blue, a subscription-based service that costs Rs 650 ($8) per month, or switch to a third-party authentication app. Twitter recommends using an authentication app or a security key as an alternative to SMS-based 2FA.
Authentication apps are external applications that can be synchronized with a user’s Twitter account to produce random codes for logging in. Some examples of authentication apps include Google Authenticator and Microsoft’s Authenticator. Conversely, a security key is a physical device that generates a unique set of numbers for logging in. It should be noted that security keys are only functional on supported mobile devices or browsers.
In order to switch to an authentication app or a security key, users must access their profile settings and navigate to the Security and account access section. From there, they can select either an authentication app or a security key to enable. After setting up the app or key, users will be required to enter the code produced by the app or key in conjunction with their password to gain access to their account.
In summary, Twitter’s move to terminate SMS-based 2FA for non-paying members is a considerable shift that may have an effect on the security of a vast number of users. Nonetheless, transitioning to an authentication app or a security key is a simple procedure that can aid users in maintaining the security of their accounts.