Twitter’s new two-factor authentication system uses an SMS-free one-time code. The move sidesteps the problem of smartphones being infected by malware that could intercept SMS codes. Security expert: “No malware that I know of has gone after non-bank SMS codes. But to do so would be extremely trivial for such malware” Twitter’s revamped system seems to have addressed those problems, and perhaps more. The system offers no compatibility with authentication software that might already reside on a user’s mobile device.”]
Source: https://www.darkreading.com/attacks-breaches/twitter-overhauls-two-factor-authentication-system