Apple's two-factor authentication system is now enabled for iCloud.com, with the site asking for a verification code before allowing users with two-factor authentication enabled to access various iCloud.com apps.
Access to iCloud.com apps like Mail, Contacts, Calendar, Reminders, Pages, Numbers, and Keynote is restricted until the verification code is entered on the website, but Find My iPhone remains accessible.
Users also receive an email when their Apple ID is used to sign into iCloud via the web browser, a feature that was implemented following the recent hacking of celebrity iCloud accounts that led to hundreds of photos being shared on the Internet.
Following the hacking incident, Apple CEO Tim Cook pledged to improve iCloud security by expanding two-factor authentication to iCloud and sending out security emails when a device is restored, iCloud is accessed, or a password change is attempted. Cook also said that Apple will aim to increase awareness about two-factor verification.
Originally implemented back in March of 2013, two-factor verification is an opt-in system designed to increase Apple ID account security by requiring identity verification before allowing users to make account changes or purchase content on new devices. It replaces standard security questions with a security code delivered to a trusted device.
Apple first tested two-factor authentication for iCloud.com back in June, well ahead of the iCloud breach, but the feature was not implemented until today.
Sunday February 22, 2026 9:48 am PST by Joe Rossignol
In his Power On newsletter today, Bloomberg's Mark Gurman said Apple will have a three-day stretch of product announcements from Monday, March 2 through Wednesday, March 4. In total, he expects Apple to introduce "at least five products."
Subscribe to the MacRumors YouTube channel for more videos.
A week ago, Apple invited selected journalists and content creators to an "Apple Experience" in...
Sunday February 22, 2026 5:29 pm PST by Joe Rossignol
Apple's software engineers are testing iOS 26.3.1, according to the MacRumors visitor logs, which have been a reliable indicator of upcoming iOS versions.
iOS 26.3.1 should be a minor update that fixes bugs and/or security vulnerabilities, and it will likely be released within the next two weeks.
Last month, Apple released iOS 26.2.1 with bug fixes and support for the second-generation...
Sunday February 22, 2026 8:41 am PST by Joe Rossignol
The special new color that Apple is considering for the iPhone 18 Pro and iPhone 18 Pro Max this year is red, according to Bloomberg's Mark Gurman.
Specifically, he said that Apple is testing a "deep red" finish for the two devices.
If this rumor materializes, it would be the first time that the Pro and Pro Max models ever come in red, and the iPhone 18 Pro models would be the first...
Tuesday February 24, 2026 4:03 am PST by Tim Hardwick
Apple CEO Tim Cook was among a handful of top tech executives who attended a classified CIA briefing warning that China could attack Taiwan by 2027, according to a sweeping investigative report by The New York Times ($).
The previously unreported briefing was apparently held in a secure room in Silicon Valley in July 2023. The meeting is said to have been arranged at the request of the...
Monday February 23, 2026 2:31 pm PST by Joe Rossignol
While the AirPods Pro 3 launched less than six months ago, it has been rumored that Apple plans to unveil new AirPods Pro this year.
Instead of AirPods Pro 4, it has been rumored that the new AirPods Pro will be a higher-end version of the AirPods Pro 3. This would be similar to the regular AirPods 4, which are available in two versions, with and without active noise cancellation....
so you have to own two apple devices in order for this to work?
If it is like the rest of their 2FA, It supports SMS. I had it associated with my Android phone for some time until I recently switched it back to my iPhone.
I noticed it a while ago when I logged in months ago. This isn't news, this is just a feature that hasn't been reported on yet.
The whole iCloud "break in" is the dumbest piece of reporting I've seen in a while.
They used a password like, "PASSWORD" or "passw0rd" or "Pass123" or something equally dumb. This is a story about idiots and their bad passwords, not about Apple. Ugh, pisses me off.
