North Korean hackers might want to steal your Twitter account.
If you’re active on Twitter, time to update your security settings.
Using two factor authentication (2FA) is a must these days, as hackers can attempt to crack your weak password, using a massive database of leaked login credentials.
Until now, Twitter required the use of SMS messages as the 2FA method, but now this is changing.
You can now use a third party application, such as Google Authenticator, Authy, or Microsoft Authenticator that use the same Time-based One-time Password Algorithm (TOTP) method.
But why avoid using SMS as a 2FA method?
There are two main reasons to convert to third party authentication apps:
- The underlying cellphone protocol (SS7) is far from bulletproof.
- Cellphone companies can be social-engineered to alter the SIM card number associated with your phone, and hand it over to a hacker (SIM card attack.)
For more information on the Twitter security announcement, click here.
