Social network X has announced that it will retire its twitter.com domain for authentication purposes, affecting users who utilize a hardware key like YubiKey for two-factor authentication (2FA). To avoid being locked out, users must re-enroll their security keys before November 10.
The company’s safety account emphasized the need for users to act, stating, “By November 10, we’re asking all accounts that use a security key as their 2FA method to re-enroll their key to continue accessing X. You can re-enroll your existing security key, or enroll a new one.”
According to Christopher Stanley, a security engineer at X, the domain change aims to enhance domain trust, ensuring that physical security keys are properly associated with X’s domain for secure authentication.
Users who rely on hardware keys for account security can update their settings by navigating to ‘Settings’ -> ‘Security and account access’ -> ‘Two-factor authentication’ -> ‘Manage security keys’.
It remains unclear whether X’s retirement of the twitter.com domain is solely a security measure or part of broader changes. The company has been contacted for clarification on this matter.
Source: TechCrunch