Updated

How Apple’s iCloud authentication system fails to protect your account when using a browser

Apple’s two-factor authentication turns into one-factor authentication on the web.
icloud 2fa apple id
Michael Simon/IDG