I am writing this after watching the deep fake video of you which you shared on X.
I request that you consider adding support for YubiKey as two-factor authentication (2FA) beside SMS and app based TOTP to further secure our accounts.
YubiKey provides an additional layer of security beyond traditional password entry, making it more difficult for attackers to gain unauthorized access to user accounts.
This is especially important in the financial industry where large sums of money are at stake.
Supporting YubiKey 2FA would demonstrate your commitment to protecting your users’ account.
It would also help differentiate your app from competitors who may not offer this advanced security feature.
For users like me who keep significant amount of money with your app, YubiKey support would provide an added layer of protection and [a lot of] peace of mind.
It is 2025, and Kite doesn’t have the most secure way to protect accounts. YubiKey is available at all major e-commerce platforms with thousands of reviews. However, is this data not sufficient to implement this feature and initiate awareness around it.
The implementation got stalled due to various other projects. However, we have been closely tracking cases of account compromises and there have been no cases since the implementation of TOTP/ app code in Aug 2022.
We also have other measures such as sending a push notification and a email notification when someone tries to login from a new location/ IPor a new device after the first factor is entered before the entry of the second factor. Further, we are one of the only platforms which doesn’t allow a user to login from more than one web/ app session.
Having said that, we will surely implement support for Yubikey in the near future. We will update this thread once that’s done.