Couldn't a phishing site just do a simultaneous login and pass through your token? https://techsolidarity.org/resources/security_key_gmail.htm …pic.twitter.com/S5pvqnEgb3
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
nope. That’s what makes them such a security win. Key response is matched to exact domain by browser, and is unphishable
Doh! You're right. I was thinking of the OTP from the app, which you rightly make a point is a backup. Thank you for catching that.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.