We strongly encourage anyone using Twitter to get started with their login verification today. To do so:
- Visit your Twitter account settings page.
- Select "require a verification code when I login".
- Click on the link to "add a phone" and follow all prompts.
- After you've enabled the login verification, you'll be asked to enter the six-digit code that Twitter sends to your phone via SMS each time you try to login.
The only downside we currently see is that Twitter does not support "page admins" at this time. A company must have one Twitter login to manage a brand page, unlike Facebook and G+ that allow individuals to have their own logins who then have admin access to manage a brand page. This means that the company must enable the login verification set-up with one particular phone, and ensure that whoever needs access to the brand's Twitter account has access to that phone.
In general, though, we applaud Twitter for releasing two step authentication, and it seems to reflect a greater trend of services implementing improved security options for their users. And we agree with Twitter's previous statements that companies and individuals also have a responsibility to follow best security practices, which includes the use of a password manager and following through on enabling available security options. We hope to see brands and individuals taking advantage of the new offering.
Will you be enabling Twitter's two step authentication option? Share your thoughts in the comments below.