Reddit, the so-called “front page of the internet”, has some important news for its 250 million registered users.
You can now secure your Reddit account with two-factor authentication (2FA).
The additional layer of security has been rolled out as an option to all users following months of beta-testing.
To enable the feature, Reddit users must access their account preferences on a desktop computer, and access the password/email tab.
If you scroll down you will see a new two-factor authentication option towards the bottom of the webpage.
If you select “Click to enable”, you will be asked to confirm your email address and password. With that done, Reddit will present you with a dialog familiar to anyone who has enabled 2FA on one of their online accounts before – suggesting you scan a QR code into the authentication app of your choice that supports the Time-based One-Time Password (TOTP) protocol.
After you have scanned the code, and entered a verification code generated by your app, you’re all done. Your Reddit account is now protected by two-factor authentication (although the site does recommend that you generate some emergency backup codes in the event of losing access to your authentication app).
From now on you’ll be required to enter a six-digit code when logging into the site, as well as your password.
If you need further help, be sure to check out Reddit’s support article on its two-factor authentication feature.
It’s great that Reddit has introduced this feature, but I wonder how many users will bother to enable it? Just last week it was revealed that over 90% of Gmail users have failed to enable two-factor authentication, despite email accounts arguably being much more important to protect than a Reddit account.
Furthermore, in its current implementation, Reddit’s 2FA requires users to enter (Read more...)
*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Graham Cluley. Read the original post at: https://www.tripwire.com/state-of-security/featured/reddit-rolls-out-2fa-to-all-its-users/