Twitter Deploys Two-Factor Authentication to Protect User Accounts
After a spate of high-profile compromises, Twitter announced it is rolling out a new way for users to better protect their accounts from hijacking.Twitter is imposing two-factor authentication to bolster account security in view of recent high-profile breaches affecting Twitter as well as media organizations around the world. In response to the attacks, Twitter announced Wednesday it is rolling out a form of two-factor authentication to provide extra security for users. The new "log-in verification" feature will serve as a second check to make sure users are who they say they are, explained Jim O'Leary, of Twitter's product security team. As part of the feature, users will be asked to register a verified phone number and email address with Twitter. "Every day, a growing number of people log in to Twitter," he blogged. "Usually these log-in attempts come from the genuine account owners, but we occasionally hear from people whose accounts have been compromised by email phishing schemes or a breach of password data elsewhere on the Web." "After you enroll in log-in verification, you’ll be asked to enter a six-digit code that we send to your phone via SMS [Short Message Service] each time you sign in to twitter.com," he explained. The change follows a spate of attacks against the Twitter feeds of news organizations such as the Financial Times and BBC. In April, a Twitter account belonging to the Associated Press was compromised and used to send out a fake tweet claiming that there had been two explosions at the White House and that President Barack Obama had been injured. The fake report was credited with causing a brief fluctuation in the financial markets.