Skip to main content

On This Page
← AI News
AI News Cyber Security Social Media

X Urges Users to Re-Enroll Security Keys by November 10 to Prevent Lockouts

2 min read
Share

These articles are AI-generated summaries. Please check the original sources for full details.

X Warns Users With Security Keys to Re-Enroll Before November 10 to Avoid Lockouts

Social media platform X (formerly Twitter) has issued a critical update for users relying on hardware-based two-factor authentication (2FA) methods, such as Yubikeys, to secure their accounts. The platform mandates that these users re-enroll their security keys by November 10, 2025, to prevent account lockouts during its domain transition from twitter.com to x.com. Failure to comply will result in account inaccessibility unless users opt for alternative 2FA methods or disable 2FA entirely (which is strongly discouraged).

Key Details and Implications

Re-Enrollment Deadline and Consequences

  • Deadline: November 10, 2025.
  • Impact: Users who do not re-enroll will face account lockouts until they:
    • Re-enroll their security key.
    • Switch to another 2FA method (e.g., authenticator apps, SMS for non-Premium users).
    • Disable 2FA (not recommended for security reasons).

Reason for the Change

  • Domain Retirement: X is phasing out the twitter.com domain as part of its rebranding from Twitter to X (launched in July 2023 under Elon Musk’s ownership).
  • Security Key Association: Current security keys are tied to twitter.com. Re-enrollment links them to x.com, enabling the domain retirement.

Exemptions and Alternatives

  • Non-Hardware 2FA Users: Those using authenticator apps (e.g., Google Authenticator, Microsoft Authenticator) are unaffected.
  • SMS 2FA: Available only to non-Premium subscribers (as of March 20, 2023).

Steps to Re-Enroll Security Keys

  1. Access Settings: Navigate to Settings and privacy > Security and account access > Security > Two-factor authentication.
  2. Manage Keys: Select Security key > Manage security keys > Delete existing keys.
  3. Re-Enroll:
    • Choose Security key > Enter X password > Confirm via email.
    • Insert the key via USB, Bluetooth, or NFC, and press the key’s button.
    • Follow on-screen instructions to complete setup.

Broader Context and Recommendations

  • Security Best Practices: X emphasizes the importance of 2FA for account protection. Users are advised to prioritize hardware keys or authenticator apps over SMS for stronger security.
  • Transition Timeline: The domain change aligns with X’s broader rebranding efforts, which began after Musk’s acquisition in 2022.
  • User Communication: X has communicated the change via its official Safety handle on the platform, ensuring users are informed of the deadline and steps.

For further details, refer to X’s official announcement:
https://thehackernews.com/2025/10/x-warns-users-with-security-keys-to-re.html

Continue reading

Next article

Weekly Recap: Critical Cyber Threats, Ransomware Resurgence, and Emerging Vulnerabilities

Related Content

Nov 20, 2025

CTM360 Exposes a Global WhatsApp Hijacking Campaign: HackOnChat

Thousands of malicious URLs drive WhatsApp account hijacking via session theft and social engineering, per CTM360's 2025 report.

Read article
Jan 13, 2026

Malicious Chrome Extension Steals MEXC API Keys via Trading Tool Disguise

A malicious Chrome extension, ‘MEXC API Automator,’ stole MEXC API keys from users, enabling unauthorized withdrawals and highlighting the risk of supply chain attacks.

Read article
Jan 13, 2026

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation

ServiceNow resolved CVE-2025-12420, a critical vulnerability that allowed unauthenticated attackers to impersonate users on its AI Platform.

Read article