X requires security-key and passkey re-enrollment before the twitter.com to x.com migration
Security Tool/Service
Summary
Hide ▲
Show ▼
X is requiring users who rely on security keys or passkeys for 2FA to re-enroll by November 10, or their accounts will be locked until they update authentication. The change affects phishing-resistant login methods tied to the retired twitter.com domain and forces affected users to choose another 2FA option or re-register their key. X says the move is driven by its migration to x.com, not by a security incident.
Timeline
-
27.10.2025 21:36 1 articles · 7mo ago
X warns users to re-enroll security keys and passkeys before November 10
Initial DisclosureX is requiring accounts that use security keys or passkeys for 2FA to re-enroll before November 10, with affected users told they can re-enroll an existing key, enroll a new one, switch to another 2FA method such as an authenticator app, or disable 2FA; X says the change is tied to its migration from twitter.com to x.com and not to a security incident.
Show sources
- X: Re-enroll 2FA security keys by November 10 or get locked out — www.bleepingcomputer.com — 27.10.2025 21:36
-
27.10.2025 21:36 1 articles · 7mo ago
X enforces the November 10 re-enrollment deadline for security keys and passkeys
Mitigation Patch UpdateAccounts on X that still use security keys or passkeys are locked until the user re-enrolls the existing or a new key, chooses another 2FA method such as an authenticator app, or disables 2FA; after the November 10 deadline, re-enrolled credentials are associated with the x.com domain and are not impacted when twitter.com is finally retired.
Show sources
- X: Re-enroll 2FA security keys by November 10 or get locked out — www.bleepingcomputer.com — 27.10.2025 21:36