Apple launched 2-step verification this week, and promptly afterwards it was discovered that there was a pretty big flaw in the iForgot password reset system allowing anyone to access another person’s account with just an email address and date of birth to hand.
Thankfully, Apple’s staff worked hard to get the security issue fixed and has now brought the iForgot password reset page back online. Despite this fix, I’d still recommend that you set up 2-step verification on your Apple ID/iCloud for extra security.
But, be sure to read all the warnings and terms, because once you’ve gone 2-step, you’ll not be able to go back and nobody (not even Apple) will be able to access your account if you forget your password/Recovery Key. If you’re not sure how to set it up, head on over to our simple tutorial.