Apple Two-Step Verification Now Available for iMessage and FaceTime [Updated]
Apple's two-step verification system now covers FaceTime and iMessage, reports The Guardian. Signing into an iMessage or FaceTime account protected by two-step verification will ask users to input an app specific password, which can only be obtained by logging in to an Apple ID account on the web with an authentication code, thereby preventing any unauthorized login attempts.
Two-factor verification is an opt-in system that was first introduced in March of 2013 to increase the security of Apple ID accounts. Prior to today, a verification code was only required for making changes to an account, signing into iCloud, or making iTunes/App Store purchases from a new device.
Two-factor authentication for iCloud is a recent addition that was implemented in September following the breach of several celebrity iCloud accounts, leading to a slew of leaked photos. The hacking incident led Apple to improve the security of iCloud and it also prompted the company to send out security emails when a device is restored, iCloud is accessed, or a password change is attempted.
Last month, a Medium post highlighting some of the remaining shortcomings of two-factor authentication was shared by several technology sites, which may have inspired Apple to update the service to protect iMessage and FaceTime accounts. The post pointed out that it was still possible to log into iMessage, FaceTime, iTunes, the App Store, and into the website using an account with two-factor authentication enabled without being asked for a verification code.
It seems two-factor authentication for iMessage and FaceTime may still be rolling out to users, as MacRumors was able to log into iMessage and FaceTime accounts with two-factor authentication enabled without a code.
Update: Two-factor authentication for iMessage and FaceTime seems to be more widely available now, and it appears that logging into an account requires an app specific password rather than a code to prevent unauthorized entry attempts.
Popular Stories
Apple is expected to announce iOS 18 during its WWDC keynote on June 10, and new features have already been rumored for many apps, including Apple Music, Apple Maps, Calculator, Messages, Notes, Safari, and others. Below, we recap iOS 18 rumors on a per-app basis, based on reports from MacRumors, Bloomberg's Mark Gurman, and others: Apple Maps: At least two new Apple Maps features are...
In his Power On newsletter today, Bloomberg's Mark Gurman outlined some of the new products he expects Apple to announce at its "Let Loose" event on May 7. Subscribe to the MacRumors YouTube channel for more videos. First, Gurman now believes there is a "strong possibility" that the upcoming iPad Pro models will be equipped with Apple's next-generation M4 chip, rather than the M3 chip that...
Apple's upcoming iPad Pro models will feature "by far the best OLED tablet panels on the market," according to Display Supply Chain Consultants. Set to be announced on May 7, the OLED iPad Pro models will feature LTPO (a more power efficient form of OLED), a 120Hz ProMotion refresh rate, and a tandem stack and glass thinning that will bring "ultra-thin and light displays" that support high...
Bloomberg's Mark Gurman today said that iOS 18 will "overhaul" many of Apple's built-in apps, including Notes, Mail, Photos, and Fitness. Gurman did not reveal any specific new features planned for these apps. It was previously rumored that the Notes app will gain support for displaying more math equations, and a built-in option to record voice memos, but this is the first time we have...
Best Buy today has discounted Apple's M1 iPad Air (64GB Wi-Fi) to a new all-time low price of $399.99 in the Starlight color option, down from $599.99. Best Buy says this deal will last through the end of the day, and it's only available in one color at this record low price. Note: MacRumors is an affiliate partner with Best Buy. When you click a link and make a purchase, we may receive a...
Apple has announced it will be holding a special event on Tuesday, May 7 at 7 a.m. Pacific Time (10 a.m. Eastern Time), with a live stream to be available on Apple.com and on YouTube as usual. The event invitation has a tagline of "Let Loose" and shows an artistic render of an Apple Pencil, suggesting that iPads will be a focus of the event. Subscribe to the MacRumors YouTube channel for more ...
With iOS 17.5, Apple is adding a "Repair State" feature that is designed to allow an iPhone to be sent in for service without deactivating Find My and Activation Lock. The fourth iOS 17.5 beta that came out today adds a "Remove This Device" option for all devices in Find My, and using it with an iPhone puts that iPhone into the new Repair State. Right now, sending an iPhone to Apple to be...
Top Rated Comments
Passcode, iCloud password, two-factor authentication, app specific password, recovery code, key chain passcoe..... This is way too complex. I have a background in IT and I cannot keep up with the complexity. I don't think the average use knows how to navigate through.
Apple has to give us something simpler. Maybe Apple Watch is the saviour?
This hits it on the head. As an IT professional you would love to recommend that everyone turn on 2-factor wherever it exists. However, the reality is that for the MAJORITY of users, the probability of them getting hacked is much smaller than the probability of them locking themselves out of their own account! It's unfortunate, but true, that even many technically savvy people are horrible at organization and record-keeping. They are so used to just being able to reset forgotten passwords at will, that they are at great risk of forfeiting any account that they choose to enable 2-factor on.
Password managers certainly go a long way towards optimal use of unique passwords. However, how many users do you know would actually know how to use their password manager of choice well. How many people do you know that if they enabled 2-factor for a given service like an AppleID, would take the time to customize their vault entry to include their 2-factor recovery key?
How many people do you know that understand that they will forfeit their purchases, email, iCloud, etc, forever if they enable 2-factor on their AppleID but then get locked out and don't know their recovery key?
For these reasons, in 2014 I still find it tough to recommend 2F for anyone that I don't know well enough to understand their technical and credential management aptitude. For the other 99%, I just try to get them interested in using a password manager instead.
Yeah, someone could break into your phone and send an iMessage with one of the new emoticons that doesn't match your race, and then you could get sued for being racially insensitive. (colon, right parenthesis)