Snapchat introduces two-factor auth, but users 'won't care'
Picture messaging app only offers improved security as an opt-in measure
The majority of Snapchat users won't bother using two-factor authentication for the app, despite the company introducing the enhanced security measure last week.
This is according to security analyst Graham Cluley, who welcomed the move but warned that humans are "notoriously bad" at password management, and questioned whether the app's young users would care about the extra safeguard.
Snapchat uses a verification code delivered via SMS as a second security measure for customers logging in on new devices, and it can be activated from within a sub-menu in the settings' section of the app.
But Cluley wrote in a blog post: "The vast majority of Snapchat users will never turn on the feature. As if teens taking naked photos of their private parts care about privacy"
He added that Snapchat should make two-factor authentication a default security measure for all users.
"Adding the feature means that Snapchat can say that it provides a mechanism for protecting its users and shrug off any further responsibility," he said.
"If Snapchat really truly cared about its users, they would enforce the use of login verification on new accounts explaining how it's an important safety measure that can protect the privacy of accounts with the minimum of disruption."
Numerous nude pictures were leaked in an event known as the Snappening' last October, after the servers of a third-party Snapchat clone were breached, and while Cluley aired doubts over the success of the new measure, others believe it could lead to better security in apps.
Tony Pepper, CEO of security firm Egress Software, pointed to Facebook's recent announcement regarding encrypted messaging, saying as social apps employ better security, it will lead employees to demand better protection in the workplace.
He said: "They are set to demand the same level of security in the workplace. The tides are turning because the days of the IT department imposing security measures on staff are behind us.
"It's now the other way around, with increasingly informed employees banging on the door and demanding solutions they can understand, that have been designed with them in mind."
Consumer choice and the payment experience
A software provider's guide to getting, growing, and keeping customersDownload now
Prevent fraud and phishing attacks with DMARC
How to use domain-based message authentication, reporting, and conformance for email securityDownload now
Business in the new economy landscape
How we coped with 2020 and looking ahead to a brighter 2021Download now
How to increase cyber resilience within your organisation
Cyber resilience for dummiesDownload now