Apple is increasing security on the iCloud after the massive breach of security two weeks ago. The cloud storage service will now alert users via email when their account is accessed from a browser; even if the browser has been saved as a recognised device. This feature is not new on the internet, although this is the first time that Apple is implementing it.
Until recently login alerts would only happen if it was done from a new device; however, recent events have caused Cupertino to rethink its security practices. Users will be alerted to more than just login attempts, but also password changes and device restore attempts.
One issue here is that users are only alerted after their accounts have been accessed, without doing anything to verify the identity of the person logging in. Two step verification is already part of the iCloud, although it is an opt in feature that many users are unaware exists or are simply not bothered to activate. In other words, it is likely that users who have been hacked will be alerted to the unauthorised access; but be too late to do anything about it.
Other cloud based services tend to take a more preventative approach to the problem, with popular gaming platform Steam requiring each login from a new device to verify the user with a one time code sent via email. Considering that the service doesn’t even store credit card information on the cloud – unlike Apple – it provides an example of how a small inconvenience to users can provide extra security. As rumours of Apple’s mobile payment service pick up momentum, it would be more comforting if the company forced a few extra mandatory security practices on users.