As the company warned earlier, Google is now implementing mandatory two-factor authentication for Nest accounts. Given the recent issues at Nintendo and elsewhere, the move makes sense. If you still have a Nest account, you'll see a quick message to enable the security feature.
The news about the implementation comes from a Google support page, and as explained there, you can avoid reversing two-factor authentication. All you need to do is migrate your Nest account to a Google account, which the company says is more secure.
Two-factor authentication is becoming the industry standard due to the continued practice of password reuse. Using the same password for each account will put you at risk.
Rather than attempting to hack directly into servers, hackers have turned to additional attacks. All the hacker has to do is find a previous database breach (such as Adobe, LinkedIn, MyFitnessPal and others) and scrape all username and password combinations.
From there, the bad actor will try those combinations on other sites like Nest, hoping that people have reused passwords. This allows them to log in easily instead of trying to hack into the server.
Two-factor authentication adds an extra level of security that can help prevent these types of attacks. Even if the hacker uses the correct username and password, they will likely not be able to verify the one-time use code.
Of course, in addition to two-factor authentication, having unique, complicated passwords for every service you sign up for is the best way to protect yourself. You can use a password manager to help you with that. Two-factor authentication, while an inconvenience, is another layer of security that can help protect you.
Since we're talking about cameras that record the inside and surroundings of your home, any security layer you can add is a good thing to have.