Snapchat introduces two-factor auth, but users 'won't care'

Picture messaging app only offers improved security as an opt-in measure

The majority of Snapchat users won't bother using two-factor authentication for the app, despite the company introducing the enhanced security measure last week.

This is according to security analyst Graham Cluley, who welcomed the move but warned that humans are "notoriously bad" at password management, and questioned whether the app's young users would care about the extra safeguard.

Snapchat uses a verification code delivered via SMS as a second security measure for customers logging in on new devices, and it can be activated from within a sub-menu in the settings' section of the app.

But Cluley wrote in a blog post: "The vast majority of Snapchat users will never turn on the feature. As if teens taking naked photos of their private parts care about privacy"

He added that Snapchat should make two-factor authentication a default security measure for all users.

"Adding the feature means that Snapchat can say that it provides a mechanism for protecting its users and shrug off any further responsibility," he said.

"If Snapchat really truly cared about its users, they would enforce the use of login verification on new accounts explaining how it's an important safety measure that can protect the privacy of accounts with the minimum of disruption."

Numerous nude pictures were leaked in an event known as the Snappening' last October, after the servers of a third-party Snapchat clone were breached, and while Cluley aired doubts over the success of the new measure, others believe it could lead to better security in apps.

Tony Pepper, CEO of security firm Egress Software, pointed to Facebook's recent announcement regarding encrypted messaging, saying as social apps employ better security, it will lead employees to demand better protection in the workplace.

He said: "They are set to demand the same level of security in the workplace. The tides are turning because the days of the IT department imposing security measures on staff are behind us.

"It's now the other way around, with increasingly informed employees banging on the door and demanding solutions they can understand, that have been designed with them in mind."

Featured Resources

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Evaluate your order-to-cash process

15 recommended metrics to benchmark your O2C operations

Download now

AI 360: Hold, fold, or double down?

How AI can benefit your business

Download now

Getting started with Azure Red Hat OpenShift

A developer’s guide to improving application building and deployment capabilities

Download now

Recommended

SonicWall hacked via zero-day flaw in remote access tools
Security

SonicWall hacked via zero-day flaw in remote access tools

25 Jan 2021
Best ransomware removal tools
ransomware

Best ransomware removal tools

22 Jan 2021
Hackers publish over 4,000 files stolen from SEPA in ransomware attack
Security

Hackers publish over 4,000 files stolen from SEPA in ransomware attack

22 Jan 2021
Weekly threat roundup: SAP, Windows 10, Chrome
vulnerability

Weekly threat roundup: SAP, Windows 10, Chrome

21 Jan 2021

Most Popular

How to move Windows 10 from your old hard drive to SSD
operating systems

How to move Windows 10 from your old hard drive to SSD

21 Jan 2021
What is the Raspberry Pi Pico?
Hardware

What is the Raspberry Pi Pico?

21 Jan 2021
WhatsApp could face €50 million GDPR fine
General Data Protection Regulation (GDPR)

WhatsApp could face €50 million GDPR fine

25 Jan 2021