Twitter users were urged to check their settings today – app changes put them at risk

Millions of Twitter users have been urged to check their settings now or risk their accounts being hacked.

twitter announced last month that it was disabling SMS-based two-factor authentication (2FA) for all users except Twitter Blue subscribers.

Twitter blue is Twitter’s paid service that starts at $8/month or $84/year.

“After March 20, 2023, we will no longer allow non-Twitter Blue subscribers to use text messaging as a 2FA method,” the company said. blog post.

“At that point, accounts with 2FA enabled for text messages will be disabled,” they added.

What is SMS 2FA?

Most smartphone users rely on two-factor authentication, also known as 2FA, to protect their online accounts.

2FA protects your account by requiring an extra level of verification, such as a text (SMS) confirmation before logging in.

The tech giant, which was acquired by billionaire Elon Musk in October 2022, called SMS-based 2FA “historically popular.”

“Unfortunately, we have seen phone number-based 2FA abused and abused,” they added.

However, many cybersecurity experts believe Twitter’s move will leave many users unprotected.

Michael Crandell, CEO of password manager company Bitwarden, told The US Sun:

Still, there are ways users can keep their accounts secure even after Twitter disables SMS 2FA.

“Bitwarden encourages users to choose authenticator applications over SMS,” said Crandell.

“Big companies offer apps like Google Authenticator, Microsoft Authenticator, Twilio Authy,” he added.

Bitwarden’s preferred authenticators include Raivo for iOS and Aegis for Android.

The company also offers a built-in authentication system on all paid plans starting at just $10 per year.

“This makes bundling 2FA within a password manager very convenient,” said Crandell.

Twitter users with iPhones can also use Apple’s built-in 2FA tool. website This is an “additional layer of security” designed to “ensure that only you can access your account, even if someone knows your password.”

This feature helps keep apps that contain sensitive information (such as banking or investment details) secure, and also helps protect users from identity fraud and phishing scams.

How to enable Apple’s Authenticator

To enable Apple’s built-in authenticator, first open your iPhone’s[設定]Go to[パスワード]Choose.

Use Face ID or Touch ID to access your passwords and tap the account you want to set up 2FA on.

Please note that this 2FA method does not work for all websites and apps.

Then click Set Verification Code. A menu of two options will appear: Enter Setup Key and Scan QR Code.

If you choose a setup key, go to the app or website page and copy the setup key.

iPhone code[Settings Setup Key]paste it into the field[OK]Just tap

If you choose the QR code option, you will need to check the settings for that service/website before scanning.