IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Meta makes 2FA mandatory for high-risk users

Journalists and activists must adopt extra protective measure under new rule

Meta will start forcing its most-targeted users to use two-factor authentication as part of an expansion to its Facebook Protect program.

The expansion will also see the company roll out the program in more countries, reaching over 50 by the end of the year, including India and Portugal.

The company launched its Protect program in 2018 to introduce more security controls, including monitoring for potential hacking threats. It expanded the initiative ahead of the 2020 US election.

The company had already announced that it was introducing 2FA in 2011. Of the 1.5 million accounts that registered with the Facebook Protect program, 950,000 use the 2FA option, it said.

"However, this important feature has been historically underutilized across the internet — even by people that are more likely to be targeted by malicious hackers, such as journalists, activists, political candidates and others," it added.

Requiring that these groups use the 2FA feature will help to protect highly targeted people, the company said.

Meta will prompt accounts deemed high-risk to enrol in the Protect initiative. People who believe they fit this description can also apply to be enrolled through their organizations.

Related Resource

Multi-factor authentication deployment guide

A complete guide to selecting and deploying your MFA authentication guide

The whitepaper title on a strip of swirling blue and purple diagonal across the pageFree download

The company will also work to simplify the process in the coming months, it added, making enrolment easier and improving customer support for the feature. It has already been testing these measures, and said that it improved adoption rates to over 90% among targeted groups.

In October, following testimony about its internal policies by whistleblower Frances Haugen, the company expanded its harassment policy to protect public figures. It banned content that degraded or sexualized public figures, reflecting existing policies that applied to private individuals.

It also added more protections for journalists and human rights activists, and banned coordinated harassment in which groups of people work together to target individual users.

Featured Resources

Four strategies for building a hybrid workplace that works

All indications are that the future of work is hybrid, if it's not here already

Free webinar

The digital marketer’s guide to contextual insights and trends

How to use contextual intelligence to uncover new insights and inform strategies

Free Download

Ransomware and Microsoft 365 for business

What you need to know about reducing ransomware risk

Free Download

Building a modern strategy for analytics and machine learning success

Turning into business value

Free Download

Recommended

Meta hit with €17 million fine over multiple GDPR breaches
data protection

Meta hit with €17 million fine over multiple GDPR breaches

16 Mar 2022
Meta says Apple's iOS privacy changes will cost it $10 billion in 2022
privacy

Meta says Apple's iOS privacy changes will cost it $10 billion in 2022

3 Feb 2022
Google, Facebook fined €210 million for making it difficult for users to reject cookies
Policy & legislation

Google, Facebook fined €210 million for making it difficult for users to reject cookies

6 Jan 2022
Meta delays product-wide end-to-end encryption rollout until 2023
encryption

Meta delays product-wide end-to-end encryption rollout until 2023

22 Nov 2021

Most Popular

Windows Server admins say latest Patch Tuesday broke authentication policies
Server & storage

Windows Server admins say latest Patch Tuesday broke authentication policies

12 May 2022
Russian hackers declare war on 10 countries after failed Eurovision DDoS attack
hacking

Russian hackers declare war on 10 countries after failed Eurovision DDoS attack

16 May 2022
IT admin deletes company’s databases and is jailed for seven years
Policy & legislation

IT admin deletes company’s databases and is jailed for seven years

16 May 2022