Starting this spring, Nest accounts will require 2-factor authentication, courtesy of Google. According to Google Nest, as they’re called, all Nest users will be required to enroll in two-factor authentication, rather than just being given the option. Nest asserted that this feature will be required for all users, whether or not they’ve migrated their account to a Google account.
This update will appear soon, at the point at which Nest users log in to their accounts. An email will be sent from firstname.lastname@example.org with a 6-digit verification code, and you’ll need to grab it. The verification code will be required for the user to log in to their Nest system from this point forward.
Nest created a Safer Internet Day event article to note that this change was coming. They also made a list of “best practices” for users looking to remain secure through the future.
They suggested that people enable two-factor authentication right out the gate, even in advance of their forced update coming this Spring. They suggested that users migrate to a Google account, and that users should consider using a password manager. They suggested that users “avoid clicking on suspicious-looking emails and never provide personal information in response to them.”
UPDATE: To be clear, the closest we’ve gotten yet to an official launch date for this update with 2-factor authorization is as follows. Per Nest: “Starting this spring, we’re requiring all Nest users who have not enrolled in this option or migrated to a Google account to take an extra step by verifying their identity via email.” You can expect this update to appear exceedingly soon – no better time than as fast as possible!
UPDATE 2: To be extra, extra clear, per a Nest representative, “this 2FA update is specifically for Nest users who have not migrated to a Google account or enabled 2FA. Google accounts offer their own form of 2FA, so this update doesn’t apply to them—just non-migrated Nest accounts.”