Illustration by Samar Haddad / The Verge
If you’ve been on Twitter lately, you might’ve seen a message prompting you to switch away from text message two-factor authentication (2FA). That’s because Twitter’s putting the feature behind a paywall, which means you either have to pay $8 per month for Blue or switch to another authentication method — and I think most of us would choose the latter.
Fortunately, SMS 2FA isn’t the only way to secure your Twitter account, with other methods still available for free. The platform’s shutdown of the feature — at least for non-Blue subscribers — is actually a good reminder that we shouldn’t be using it in the first place.
SMS 2FA leaves you vulnerable to SIM-swapping attacks, which usually happen when a bad actor uses social engineering or…