As announced on Reddit recently, there's been a surge of Reddit accounts being compromised due to hackers cross-matching emails and passwords dumped from other websites, with those on Reddit.

Of course, these attacks could've been prevented if people didn't reuse passwords across sites, or used a password manager. They could've also been prevented if Reddit implemented 2-Factor-Authentication (2FA) for their users.

2FA is a security measure that requires a user not only to set a password, but to input a short code taken from something they own (most commonly a phone). This means that even if a hacker knows someone's password, they can't gain access unless they have the victim's device on hand. Google, Microsoft, PayPal, Evernote, and countless other companies and services have deployed 2FA as an extra barrier for hackers trying to get access to users' accounts... so why not Reddit?

Implementing this easy, needed security measure isn't difficult. In fact, Reddit admins already use it to secure special parts of their account.

Reddit have been considering rolling out 2FA for two months. I'm calling for them to stop considering, and start doing.

Reddit, your users demand better standards of security. Lead the way and roll out 2FA for everyone. There are no downsides, only upsides.