Twitter is rolling out two-factor authentication without needing a user’s phone number.
In September, the social media giant said it was working on this and that the new feature would be rolling out in the near future.
The original feature, which was launched in 2017, was to provide that extra buffer of security to an account. At the time, however, and up until now, users have had to add a phone number to their Twitter account.
Twitter has now finally rolled out the new feature, which will allow you to secure your account with two-factor authentication, without having to supply a number. That means that you can use a mobile security app, as 9to5Mac reports, like Authy or Google Authenticator, which will generate a two-factor code.
The feature doesn’t work yet with security keys because they aren’t supported outside of the web version of Twitter.
To set up the two-factor authentication via the web, first, click on the three dots in the sidebar on Twitter.com. Then click ‘Settings and Privacy,’ then ‘Account,’ then ‘Security,’ and finally, select ‘Two-Factor authentication.’
You will be able to choose between text message, authentication app and security key.
To remove your phone number on your Twitter profile, again click the three dots in the sidebar on Twitter.com. Then click ‘Settings and Privacy,’ then ‘Account,’ then ‘Security,’ then click ‘Phone,’ finally, click ‘Delete phone number.’
Using another method of two-factor authentification is a lot more secure than providing your phone number. By providing your phone number you could be a victim of SIM swapping, which is when a hacker can call your carrier claiming they’ve lost their phone and provide the carrier with a new SIM card. The hacker will then be able to easily access various accounts by having services send an authentication code to the new number.
Last month, Twitter also announced that it unintentionally used two-factor authentication phone numbers for targetted advertising.