Finally, a Half-Decent Way to Keep Your Twitter Account From Getting Hacked

The Citizen's Guide to the Future
May 22 2013 5:19 PM

Finally, a Half-Decent Way to Keep Your Twitter Account From Getting Hacked

Two-factor authentication means that hackers won't be able to sign in to your account even if they steal your password.
Two-factor authentication means that hackers won't be able to sign in to your account even if they steal your password.

Screenshot / YouTube

Twitter announced today that it is rolling out “login verification,” a.k.a. two-factor authentication. It’s a password-security measure that people have been clamoring for, especially given the recent wave of Twitter-account hijackings by the Syrian Electronic Army.

Will Oremus Will Oremus

Will Oremus is Slate's senior technology writer.

That’s bad news for celebrities who want plausible deniability when they tweet embarrassing things. But it’s good news for the average user, because it means that your Twitter account should be safe even if someone manages to steal your password. Once you’ve turned on login verification, signing into Twitter will require not only your password but also a code that will be sent to your phone via text message. That means password thieves will be stymied, unless they’ve somehow gotten hold of your phone, too.


The system isn’t perfect, though. As TechCrunch’s Josh Constine points out, it doesn’t yet work with mobile apps. And for now Twitter allows only one phone number per account, which is inconvenient for big organizations that need to give multiple employees access to their Twitter feeds. Finally, as my colleague Farhad Manjoo noted, you have to have a working cellphone signal in order to receive the text message,  which is not the case with more advanced services like Google Authenticator.

So why doesn’t Twitter just use Google Authenticator instead? “We wanted to build this as part of the Twitter architecture,” spokesman Jim Prosser told me, because the engineering work that Twitter put into the login-verification feature will allow it to add more security measures in the future.

Login verification is being rolled out to Twitter users throughout the day. To turn it on, visit your account settings page and check the box that says, “Require a verification code when I sign in.” If you need help, consult the video below.

Then do yourself a favor and enable two-factor authentication for your email and Facebook accounts, too. PCWorld has a good primer on how to do that for the most popular services.

One last note: It's always prudent make these types of account changes by visiting the relevant website directly from within your browser, not by clicking a link in an email. Scammers are often quick to capitalize on security news like this by sending out bogus messages telling people to “click here” in order to change their password. Don’t do it, or you might end up like The Onion.

Future Tense is a partnership of SlateNew America, and Arizona State University.



Crying Rape

False rape accusations exist, and they are a serious problem.

Scotland Is Just the Beginning. Expect More Political Earthquakes in Europe.

I Bought the Huge iPhone. I’m Already Thinking of Returning It.

The Music Industry Is Ignoring Some of the Best Black Women Singing R&B

How Will You Carry Around Your Huge New iPhone? Apple Pants!

Medical Examiner

The Most Terrifying Thing About Ebola 

The disease threatens humanity by preying on humanity.


The Other Huxtable Effect

Thirty years ago, The Cosby Show gave us one of TV’s great feminists.

Lifetime Didn’t Find the Steubenville Rape Case Dramatic Enough. So They Added a Little Self-Immolation.

No, New York Times, Shonda Rhimes Is Not an “Angry Black Woman” 

Brow Beat
Sept. 19 2014 1:39 PM Shonda Rhimes Is Not an “Angry Black Woman,” New York Times. Neither Are Her Characters.
Sept. 19 2014 1:11 PM An Up-Close Look at the U.S.–Mexico Border
  News & Politics
Sept. 19 2014 6:22 PM Blacks Don’t Have a Corporal Punishment Problem Americans do. But when blacks exhibit the same behaviors as others, it becomes part of a greater black pathology. 
Sept. 19 2014 6:35 PM Pabst Blue Ribbon is Being Sold to the Russians, Was So Over Anyway
Inside Higher Ed
Sept. 19 2014 1:34 PM Empty Seats, Fewer Donors? College football isn’t attracting the audience it used to.
  Double X
The XX Factor
Sept. 19 2014 4:58 PM Steubenville Gets the Lifetime Treatment (And a Cheerleader Erupts Into Flames)
  Slate Plus
Slate Picks
Sept. 19 2014 12:00 PM What Happened at Slate This Week? The Slatest editor tells us to read well-informed skepticism, media criticism, and more.
Brow Beat
Sept. 19 2014 4:48 PM You Should Be Listening to Sbtrkt
Future Tense
Sept. 19 2014 6:31 PM The One Big Problem With the Enormous New iPhone
  Health & Science
Medical Examiner
Sept. 19 2014 5:09 PM Did America Get Fat by Drinking Diet Soda?   A high-profile study points the finger at artificial sweeteners.
Sports Nut
Sept. 18 2014 11:42 AM Grandmaster Clash One of the most amazing feats in chess history just happened, and no one noticed.