I’m a little concerned that Wyze has labeled 2FA for accounts as “maybe-later.” It’s not because I think Wyze won’t implement it because, quite bluntly, no significant company will survive longterm without eventually applying it, mainly financial, smart home, data brokers, security, and even quasi-security companies. In recent years, data breaches are no longer about if or whether but when. So my concern is more related to the unintended perception that Wyze mirrors the knowledge level of its customers regarding 2FA when it should have more to protect them. 2FA on accounts is not an optional feature but a mandatory requirement to fend against modern cybersecurity threats that every other significant company has or is implementing for their accounts.
Again, I know Wyze will inevitably implement 2FA for accounts, a natural evolution beyond 2FA solely within the app or hardware. So that is not my concern. My concern is that the optics suggest that even despite global data breaches impacting billions over the last few years and the recent Wyze data breach, Wyze still doesn’t appreciate the urgency of 2FA on accounts any more than its customers do. It seems they will only understand the importance after the third-party cybersecurity firm they’ve recently partnered with to audit and improve their security protocols inevitably recommends they implement it.
So at the very least, Wyze should update this wishlist tag from “maybe-later” to whatever label they use to convey “definitely-timeline pending.” I love Wyze and its products and am not at all trying to kick it while it’s down. I believe that “maybe-later” is potentially an avoidable PR nightmare waiting to happen, particularly after the Wyze data breach. It’s one thing to have only 15 votes on a wishlist item because most of your nontechnical customers aren’t aware of the importance of 2FA security. But it’s quite another for Wyze to value the importance of 2FA protocols based exclusively on the limited security knowledge of those customers. Thanks for listening!