#YubiSecure: Take your Twitter security to the next level with increased 2FA support

Ronnie Manning

Ronnie Manning

3 minute read

Great news YubiFans! As of today, Twitter made it a lot easier for you to tweet safely and keep your accounts secure. Phishing-resistant YubiKey authentication via WebAuthn is now supported on Twitter’s desktop, Android and iOS mobile applications. 

With native WebAuthn support throughout the Twitter platform, you can register and use a USB-, NFC-, or Lightning-compatible security key, like the YubiKey, directly from your mobile phone to secure your account.  

Adding a YubiKey as your primary authenticator introduces the highest level of security and convenience to your Twitter accounts, regardless of device and platform. Once a YubiKey is registered, you will be asked to either touch or tap your key to verify that it is you accessing your account.

Once authenticated, you may also have the option to make your device a trusted one by selecting “remember this device”, so your app login experience will be as simple as opening the Twitter app before tweeting away. You will only be prompted to use your YubiKey again when you log in to Twitter from a new device, which will only require a simple touch. 

To take advantage of these new features on your account, check out our latest video:

“Helping people keep their Twitter accounts secure by providing them the tools and controls they need is a top priority for us. We have been consistently improving the way people can add two-factor authentication (2FA) to their Twitter accounts over the past year and are glad to be expanding our support to enable people to use physical security keys to login to the Twitter app on mobile. We encourage everyone to enable 2FA on Twitter to help protect their account,” said Sri Harsha Somanchi, Senior Product Manager, Twitter.

Want to use a mobile device as a back-up? Set up a second YubiKey with your Twitter account using Yubico Authenticator, our time-based one-time password (OTP) app for desktop, Android, and iOS. We highly recommend disabling SMS after a security key and authenticator app are enabled to ensure maximum security. 

The Yubico Authenticator works like other time-based OTP apps with one major difference—instead of your credentials residing on your phone, they stay secured on your YubiKey and stay with you. 

Getting a new phone or laptop over the holidays? Not a problem. Yubico Authenticator eliminates the frustration of manually re-enrolling services with your authenticator app when you use a new device. All you need to do is plug in or tap your YubiKey while using Yubico Authenticator to generate your codes. 

, ,
Talk to our teamTalk to our team

Share this article:
  • CEO Corner: Maintaining stable growth while navigating global uncertaintyAs we officially close out the first quarter of 2025,  I am pleased we saw a quarter with solid growth and profitability along with ongoing demand for phishing-resistant authentication. We continue to see new types of high-profile cyber attacks appearing regularly, and a major reason for the success of phishing attacks is stolen credentials. As […]Read moreCEOCEO CornerEarningsMattias Danielsson
  • Introducing the Yubico Academy: Enabling partners for a phishing-resistant futureAt Yubico, strong partnerships are fundamental to a more secure digital world. Our commitment goes beyond providing leading security keys; it’s about actively fostering the growth of our valued partners through impactful enablement programs. A cornerstone is the Yubico Academy, featuring our comprehensive certification program.  This program enables our partners’ teams to become Yubico experts, […]Read more
  • AI is booming — but proving you’re human matters more than everIf you walked the show floor at the RSA Conference this year, you probably noticed the same thing I did: Artificial Intelligence (AI) is everywhere. Agentic AI. AI in threat detection. AI in firewalls. AI in identity management. AI-generated demos. AI everything. The energy around AI was undeniable, and we’re seeing real innovation, efficiency gains […]Read moreAIArtificial IntelligencephishingRSAC
  • Ditching passwords for good: Celebrating the inaugural World Passkey DayHave you ever been stuck in a relationship with someone who constantly lets you down, exposes your secrets, and leaves you vulnerable? Odds are you cut your losses, packed up your things and moved on. Today is the day to do the same with your passwords: say goodbye forever! The reality is a majority of […]Read morepasskeyspasswordlessWorld Passkey Day