While improving our profile settings page we took the opportunity to make it a lot easier to enable multi factor authentication to your account. Something we should have done long ago in order to improve security.
This is proper multi factor authentication using OTP codes which you can generate using your favorite authenticator app such as Bitwarden, browser plugins, Google or Microsoft authenticator or similar. Unlike email or text messages it is also more secure as your account will stay protected even if someone gains access to your number or your email account.
To login after enabling multi factor authentication, simply generate a code from the secret using your app of choice and paste it into the MFA field during sign in, this is required after enabling MFA.
Can I still login without MFA?
If multi factor authentication is not enabled, you are able to login as usual. However we do recommend everyone to enable it for improved account security.
Can I still login if I lose my secret?
No, however if you are able to verify account ownership by for instance reaching out to support via the same email address as is used by your account and provide additional verification, we may be able to help you by disabling MFA so that you can set it up again.