Apple is making good on CEO Tim Cook's promise to beef up iCloud security in the wake of the recent celebrity photo hack.
Now, if you log into iCloud on a web browser, you will be prompted for a code if you have enabled two-factor authentication on your Apple account. Previously, two-factor authentication on iCloud only applied to purchases.
Apple has also introduced an option to remotely sign out of all browsers, which would immediately require a new login (and thus a code, if two-factor authentication is in place) for anyone trying to access the account via the web — which is the likely path of a hacker trying to access a user's iCloud data.
Tuesday's update to iCloud follows an upgrade from last week that would send users an email when an account was accessed via the web.
With Two-Factor Authentication enabled on your iCloud account, Elcomsoft's iCloud backup download tool now fails. pic.twitter.com/xMxXmGKM2f— Nick DePetrillo (@nickdepetrillo) September 16, 2014
The new security features would theoretically make hacking an iCloud account with two-factor authentication much harder.Prior to Tuesday's upgrade, Mash senior tech analyst Christina Warren was able to hack her own account with $200 off-the-shelf software, but now even a hacker who succeeded in guessing or obtaining the account password wouldn't be able to break in without the code.
On Aug. 31, nude photographs of many celebrities were posted to message boards on 4Chan. It's believed that many originated on the celebrities' iCloud accounts, which could have been accessed via so-called iCloud forensic software, especially if the account passwords weren't particularly strong. While Apple claimed iCloud wasn't technically breached, Cook later publicly said Apple would review and upgrade security for the service.
Tags: Apple, APPS AND SOFTWARE, ICLOUD, Tech, TIM COOK, TWO-FACTOR AUTHENTICATION