In the wake of a report last month that multiple Apple services remained insecure against hacking attempts, Apple has turned on two-factor authentication for the FaceTime audio/video calling service and iMessage text/picture/voice messaging service, notes The Guardian. Two-factor authentication was previously offered optionally by Apple to secure iCloud accounts against access from previously unknown computers, but other Apple services such as iMessage, FaceTime, the iTunes Store, the App Store, and Apple.com itself were left with only simple passwords for security.
Apple’s two-factor authentication system blocks new devices from accessing a user’s account by requiring more than just a simple password. Instead, it requires both the selection of a relatively complex, hard-to-crack password and a verification of a PIN code displayed briefly on a trusted device.
After the optional two-factor system is activated, an unauthorized user who gets someone else’s email address and password would still need to enter the trusted device’s temporary PIN code to access Apple’s services from a new device, reducing the likelihood of identity fraud.
If you’ve already set up two-factor authentication on your iCloud account, you’ll find that it’s active when you go to change settings in the FaceTime or Messages apps. Adding the security to the iMessage service will limit access to current and stored text, photo, and voice messages sent through Apple’s servers, while locking down FaceTime will keep unauthorized devices from receiving or making calls using a registered accountholder’s identity.
Five Apple logins remain unprotected by two-factor authentication when using an unknown device
Phone Breaker iCloud-hacking software now supports 2FA, allows access to WhatsApp iWork files
Most people are known to have their phones lost or stolen. In these situations sensitive data/photos may be on their phone. Typically you won’t have a secondary device handyâ€"backup phone number or iPad to use 2 factor on the device you’re using for Find My iPhone. Time is of the essence and it would be extremely inconvenient and frustrating to need 2FA for this feature.
Even if you are a notable figure and someone is going to extreme lengths to obtain your password, the worst they could do is wipe your phone. If you have an iCloud backup or regularly backup to iTunes, you’ll be able to restore it without issue. If you have this feature turned off though, there is a much greater chance of not being able to recover a lost phone. I don’t think it’s worth it for you having this feature turned off. Additionally, it would be a mistake for Apple to even give the option. As I think many users would accidentally turn this on thinking they are getting max protection and then actually be harmed when they need to use Find my iPhone.
While this does use a phone, other ways might include nominating a phone number other than yourself, such as allowing the number to be sent to any other phone associated with family sharing or whatever. While you still use a phone in that case, it isn’t the same device that is locked and presumably you already trust any device associated with family sharing since you’ve granted those phones the ability to make purchases with the account owners credit card.