Alerts
X is getting closer to removing the last reminders of Twitter as the platform prepares to retire the old Twitter.com domain completely. The company’s @Safety account announced that users relying on physical security keys or passkeys for two-factor authentication (2FA) will need to re-enroll their credentials before November 10th to stay protected and avoid account lockouts.
According to X, this update isn’t due to a new security threat but rather a technical necessity. The change will migrate authentication methods from the old Twitter domain to the current x.com address, ensuring all systems align with X’s rebranding and security infrastructure.
The @Safety team clarified that this update only affects YubiKeys and passkeys — not other 2FA options like authenticator apps. Security keys were originally linked to the twitter.com domain, and now they must be tied to x.com for users to continue logging in securely.
Authentication tools like hardware keys are domain-specific for a reason. They help prevent phishing attacks by refusing to work on fake or misleading URLs that try to imitate the real website. Updating them to the new x.com domain keeps users safe from lookalike scams or spoofed links pretending to be Twitter.
This update marks another major step in X’s effort to phase out Twitter’s digital footprint once and for all. It’s been over a year since the company rebranded and replaced its iconic blue bird logo, yet a few remnants of the Twitter era have persisted — including the embed page and old redirect links.
By re-enrolling these security keys and migrating all accounts to x.com, X is signaling that the final transition is near. The company wants to ensure every part of its system reflects the X identity, both visually and technically.
If you use a YubiKey or passkey for 2FA on X, you’ll receive a prompt to re-enroll it under x.com before November 10th. Failing to do so could temporarily lock your account until the process is completed. Inactive or abandoned accounts could even be subject to reallocation.
To make the switch, follow the steps in your X account’s security settings — the process is quick, and once completed, your key will work seamlessly on the x.com domain.
With this move, X is getting closer to removing the last reminders of Twitter, both in branding and backend systems. Once the re-enrollment deadline passes, the legacy domain will effectively be retired, marking the end of an era for one of the most influential platforms in internet history.
For many longtime users, it’s another reminder that the Twitter they once knew is officially gone, replaced by Elon Musk’s evolving vision for the X platform.
Access our platform effortlessly on-the-go through our user-friendly mobile apps.
𝗦𝗲𝗺𝗮𝘀𝗼𝗰𝗶𝗮𝗹 𝗶𝘀 𝘄𝗵𝗲𝗿𝗲 𝗿𝗲𝗮𝗹 𝗽𝗲𝗼𝗽𝗹𝗲 𝗰𝗼𝗻𝗻𝗲𝗰𝘁, 𝗴𝗿𝗼𝘄, 𝗮𝗻𝗱 𝗯𝗲𝗹𝗼𝗻𝗴. We’re more than just a social platform — from jobs and blogs to events and daily chats, we bring people and ideas together in one simple, meaningful space.
