Twitter allows users to use two-factor authentication without a phone number

Well-known social network Twitter has been using two-factor authentication for many years to ensure user security, but mobile phone SMS verification is also easy to leave a security risk, because the case of SIM exchange hijacked has occurred, the company has been announced the official launch of a dual verification method that does not require a phone number.

https://twitter.com/TwitterSafety/status/1197621020229804054

Entering the SMS verification code was once a compulsory course for logging into the Twitter account. Although the company later provided login switching methods such as Google Authenticator and Yubikey Key, you must register a phone number on Twitter and verify it via SMS. However, just a few months ago, the account of Twitter leader Jack Dorsey was hacked, and it was reported that the hacker used the SIM exchange to conquer the Twitter account of Dorsey. The company confirmed in a few weeks that the hacker used a phone number registered for double authentication to attack.

Although the Twitter security department has officially announced that it does not require a phone number to register for two-factor authentication (2FA), some users report that the registration process still requires a phone number.