GitHub users, take note! If you have not turned on two-factor authentication (2FA) for your GitHub accounts, do it now. GitHub sent an email warning to users, saying that if they don’t set up 2FA by mid-January 2024, there will be consequences. It is important to make this security upgrade for uninterrupted usage of Github.
The email, as reported by Bleeping Computer, serves as a final reminder for contributors to enhance their account security. This aligns with GitHub’s earlier announcement made in mid-2022. GitHub’s Chief Security Officer and SVP of Engineering, Mike Hanley, had communicated that the platform would make 2FA mandatory for all code contributors on GitHub.com by the end of 2023.
While the original deadline seems to have been extended by nearly three weeks, this adjustment could be a considerate grace period provided by GitHub, taking into account the holiday season and potential office closures. The warning is explicit: “GitHub users are now required to enable two-factor authentication as an additional security measure. Your activity on GitHub includes you in this requirement. You will need to enable two-factor authentication on your account before January 19, 2024, or be restricted from account actions.”
This mandate has already been in effect for certain account holders since March 2023. GitHub users have a variety of 2FA methods to choose from, including SMS and TOTP authentication apps, as well as physical security keys. The platform encourages users to set up more than one type of 2FA to avoid potential account lock-out scenarios. In case access is lost, a set of recovery codes provided during setup can be used to regain control.
After the January 19 deadline, users will be prompted to configure 2FA before they can continue utilizing their account’s features. GitHub’s proactive approach to security underscores the platform’s commitment to fostering a secure environment for its users, discouraging potential security threats through robust authentication practices.
As the new year approaches, GitHub users are urged to prioritize their account security by embracing two-factor authentication, ensuring uninterrupted access to their accounts, and contributing to a safer online coding community.
