Skip to main content

Two-factor verification for is back following recent hacks

Screenshot 2014-09-16 14.56.35

Back in June, Apple rolled out a two-factor authentication system for the suite of web apps. The feature quickly disappeared, but today, users are noticing that it has returned. The feature requires users to verify their identity via a ping to a SMS text number or device connected to their particular iCloud login ID. This adds an extra layer of protection so that if even another person knows your iCloud password, they will still need one of your iOS devices or SMS-connected cell phones to access Mail, Contacts, Calendar, Notes, Reminders, and iWork on the web. The addition of two-factor verification comes following Apple CEO Tim Cook’s promise to bolster iCloud security after a small number of celebrity accounts were accessed by hackers.

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel


  1. paulywalnuts23 - 9 years ago

    Wasn’t hacked… Nice way to introduce click bate… SMH.

  2. Nice to see a quick turn around on that promise. While it doesn’t help those ladies who’s nudies were taken, sure makes my ass feel better.

    • Gregory Wright - 9 years ago

      If the users secured their accounts properly two-factor verification would not be necessary. Two-factor verification helps protect some users from themselves. It idiot proof the login process.

  3. PMZanetti - 9 years ago

    Is there a reason why 9to5 insists on continuing to use the word HACK in every article referencing the incident that occurred? It couldn’t be less accurate, so I’m wondering who is sponsoring 9to5 to continue using that buzzword.

  4. - 9 years ago

    Calling the iCloud Selfie leaks a “hack” does not tell the truth at all. Phishing is the right word, because the passwords were phished with lots of effort. The iCloud was not hacked. Get some minimal IT education please.

  5. mpias3785 - 9 years ago

    I don’t see that when I log in. I just see the same old system.

  6. nsxrebel - 9 years ago

    Nice click bait 9to5, or are Samsung/PayPal now running this website?

    1st of all iCloud has been back for a while already, I did the 2 factor verification 2 weeks ago.
    2nd, iCloud was NOT hacked, people’s accounts were hacked by phishing and other social engineering methods, and also the use of WEAK passwords.

  7. bbboredatwork - 9 years ago

    Everyone needs to calm down about jumping on the author about the word “hack.” You guys may know the difference, but non tech-savvy users have no clue about the difference between hacking, phishing, or social engineering.

    Secondly, Mark Gurman, you may want to include that two-factor authorization has returned to for those users that have set it up on their account. The article makes it seems as though it’s a feature that is back for ALL users, regardless of account configuration.

    • Christian Torres - 9 years ago

      I studied International Business and I perfectly know the difference between Hack and Phishing and Brute Force and Social Engineering and every other term.

      • bbboredatwork - 9 years ago

        That’s good, I suppose. But not every one is you.

        Having worked in Apple retail during college, I can tell you that MOST people (old and young) don’t know the difference.

    • nsxrebel - 9 years ago

      Just because some people may not know the definition of hacking and the difference between phishing and other social engineering, doesn’t make it right to spread false statements.

      • houstonche - 9 years ago

        I don’t think it’s false if the common populace treats the term hacking when someone accesses an account that they shouldn’t have access too. Technically it may be wrong, but not if society interprets the word differently.

      • vikramis007 - 9 years ago

        @houstonche So essentially what you’re trying to saying is that we need to encourage people to be pathetic at English. Why go to school? Dare I say they should improve their vocabulary. While we’re at it, why not dumb down all newspapers, magazines and books too? I have a feeling you’ll reply with a stupid comment so before you do so, GTFO. Don’t know phishing? Look up the damn term. It’s as easy as a three finger tap if you’re using a Mac. We’re in the 21st century for crying out loud.

    • Derek Wildstar - 9 years ago

      one leads the reader to assume the service is not secure, and the fault of the service provider, the other (which is the truth), is the individuals password was trivial, and easy to guess, not blaming the service provider, but blaming the end user. This is why people are not calm about it, having to explain it to people (friends and family for instance) who do not understand the different and saying no way am I using that sevice because it’s not secure.

    • paulywalnuts23 - 9 years ago

      bbboredatwork that is why he shouldn’t use the term “Hack” as it implies something completely different that it actually is and the general person would think that something happened to iCloud like what happened to Target, for instance, which we all know isn’t the case… If Mark is such a good/respected writer as he likes to boast about on his bio page, then he would know that he shouldn’t do this. Truth is he knows what he is doing and like I said in the first comment, CLICK BATE….

  8. reese728 - 9 years ago

    smdh, now everybody have to be forced to use this because of some dumb hollywood actors & actresses!!