Yesterday Facebook announced that it changed the way two-factor authentication is set up, calling it “easier” than before.
The social media giant says that they’ve set up a “streamlined setup flow” to help guide users through the new two-factor authentication setup process and they’ve added different ways to secure accounts with a second factor, no longer requiring the use of a phone number.
“We previously required a phone number in order to set up two-factor authentication, to help prevent account lock-outs. Now that we have redesigned the feature to make the process easier to use third-party authentication apps like Google Authenticator and Duo Security on both desktop and mobile, we are no longer making the phone number mandatory.” — from the Facebook announcement, written by Scott Dickens, a product manager at Facebook
Some are saying that this new move means the company is taking security more seriously and others are happy that “Facebook [has] finally stop[ped] screwing around.”
Great usability work on 2FA from the authentication team at Facebook: (link fixed)May 23, 2018
This move doesn’t mean that the option for using your phone number for two-factor authentication is gone, it just means that it isn’t mandatory. But, this does mean that it’s now easier to use third-party apps as your means of two-factor authentication. Also, if you haven’t already done so, let this be a reminder that two-factor authentication is crucial for securing your account.
Here's your two week reminder that if you get hacked @instagram and @facebook support will do ABSOLUTELY NOTHING TO HELP YOU.
Turn on two factor authentication, because you are absolutely on your own.
Please retweet this, so maybe someone there might actually give a damn. May 17, 2018