Twitter now lets you enable 2FA without asking for your phone number

Twitter has changed its security settings to let you use two-factor authentication (2FA) without having to give the service your phone number. Back when Twitter relied on SMS to send users their six-digit 2FA codes this requirement made more sense, but now that it allows them use authentication apps or security keys, however, asking for phone numbers is increasingly unnecessary.

This is a very positive development from Twitter. Not only is SMS vulnerable to SIM-swapping attacks (just ask Twitter CEO Jack Dorsey), but Twitter also recently admitted to “unintentionally” using people’s phone numbers for advertising purposes. Authentication apps are more secure, and you can use them without having to give any more personal details to Twitter...

Continue reading…