Facebook is expanding support for the hardware security key to enable two-factor authentication (2FA) on Android and iOS smartphones. The new development will essentially let users add more security to the account, as bad actors would now need to obtain the password plus the hardware-key to access the content. Traditionally, the second step of authentication takes place via a separate app (like Google Authenticator) or SMS code. Facebook says it does not manufacture in-house key security key, but users can purchase third party devices from Yubico or Google (Google Titan). Since 2017, Facebook allowed users to use a hardware security key for two-factor authentication on the desktop.
In a blog post, the company states that physical security keys are small enough to fit on the keychain and can notify users each time when someone tries accessing the Facebook account from an unrecognised browser or mobile device. “We ask you to confirm it’s you with your key, which attackers do not have," Facebook adds. As mentioned, it is much harder for a bad actor to obtain both factors, which keep your password from being your last line of defence against phishing or other malicious attempts to compromise online information. After obtaining a physical security key, open the Facebook app on the Android or iOS smartphone > Settings > Security and Login > Register Key Security > Setup Your Key Security.
Notably, Facebook’s counterpart, Twitter recently announced that the social media platform would soon allow users to add an extra layer of security to their account with multiple security keys on both mobile and web clients. The micro-blogging platform would allow users to enable 2FA and login via the physical key. Twitter says the feature is “coming soon" without specifying the exact timeline. Twitter is also slowly moving away from SMS-based authentication after its CEO, Jack Dorsey’s account got compromised due to a SIM swap attack.
Read all the Latest News, Breaking News and Coronavirus News here