After nearly five years of rising cybercrime and a year of high-profile breaches, Twitter is offering a new security feature that can help reduce the risk of targeted attacks on user accounts.

According to a blog post published on June 30, the social media giant is now giving users the option to make physical security keys their only method of two-factor authentication (2FA). The move could make accounts more secure while also eliminating the previous requirement for weaker backup methods.

However, experts warn that every 2FA method has drawbacks.

“The problem is that none of these [authentication methods] are really as absolute as people think,” Joseph Steinberg, a cybersecurity expert with 25 years of experience and author of several books including Cybersecurity for Dummies, told Lifewire by phone.