Twitter don’t seem to take account security very seriously.
For over six months I’ve been trying to enable two factor authentication on my account and I want to use the Google authenticator app, rather than SMS codes with are insecure.
However, for no logical reason twitter require you add and verify a mobile number on your account before you can enable use of an authentication app.
And here’s the stumbling block, in my case twitter refuses to send an SMS code to my mobile number. My number is in of one of the early mobile number blocks, so this is rather puzzling given that it’s in a 20+ year old number range.
Despite three of four attempts to engage with @TwitterSupport I’ve been met with nothing but deafening silence.
So you have to wonder, do Twitter actually take account security seriously at all?
Addendum: November 2019
I discovered, by chance through periodically re-trying to enable 2FA, that Twitter have since changed their systems and you now don’t have to supply a working mobile number before you can enable use of Google authenticator.
A second point on this that I am happy about is discovering a twitter hack that leaked some users phone numbers, so I am glad that this was never saved into my account.
https://thehackernews.com/2020/02/find-twitter-phone-number.html
Leave a Reply