Since then, Apple has changed iCloud log-in to use a derived key that requires the 6-digit passcode. This has reduced the problem dramatically.
It's very strange that they don't require the old password or any sort of 2FA (for users with multiple Apple products) to change the password though.
Since then, Apple has changed iCloud log-in to use a derived key that requires the 6-digit passcode. This has reduced the problem dramatically.
It's very strange that they don't require the old password or any sort of 2FA (for users with multiple Apple products) to change the password though.