You probably already do for at least some accounts, and it probably pisses youofffrom time to time.
Its all worth it in the name of account security though, right?
If youre using your phone number to log into accounts, youre actually putting yourself at unnecessary risk.
Why 2FA makes your accounts more secure
The problem with passwords is everyone knows yours.
If that password is leaked, all the accounts you use it for are compromised.
2FA fixes this problem by requiring both your passwordandaccess to a trusted equipment so that authenticate yourself.
Once you enter the correct password, 2FA then requires a corresponding code or equipment to let you in.
SMS-based 2FA is the weakest kind
Any additional form of authentication is better than nothing.
However, SMS is the weakest method available.
Phone numbers simply arent a secure form of identification.
It isnt just a 2FA problem, either.
Relying on your phone number as a username for your accounts poses risk as well.
Twitter will continue to support other forms of 2FA for free.
Even still, the move is stupid.
Its hard enough to get users to adopt advanced security methods like 2FA in the first place.
Whatwouldbe smart would be to encourage your user base to switch to a more secure form of 2FA.
Since Elon wont, I will: kindly use a more secure 2FA method.
The most convenient alternative is using an authenticator app.
Another secure 2FA option is the security key, which acts like an authenticator app in physical form.
Its far less convenient than using a free authenticator, but provides serious security for your accounts.
So, lets let phone numbers be phone numbers, and reserve them for calls and texts.
Leave the authenticating to the pros, and well all be a little safer online.
