This is absolute necessary because without 2FA, anyone has access to your email can lock you back out of your own device.
-
This has been a great problem in China. Some email providers are not secure and consequently Apple IDs are compromised. Thousands of people are scammed by hackers demanding at least ¥500 for 'unlock. With 2FA, passcode locked device and a pinned SIM, it is no longer possible. However since this is still optional, people still get hacked.
+
This has been a great problem in China. Some email providers are not secure and consequently Apple IDs are compromised. Thousands of people are scammed by hackers demanding at least ¥500 for 'unlock'. Apple demand PoP and retail box matched with the device and up to 1 month manual approval for activation lock override, which is hugely inconvenient or just not possible. With 2FA, passcode locked device and a pinned SIM, it is no longer possible. However since this is still optional, people still get hacked.
I don't know where you get the more entry point, less secure idea from. Maybe a little bit of security 101 can help you?
This is absolute necessary because without 2FA, anyone has access to your email can lock you back out of your own device.
This has been a great problem in China. Some email providers are not secure and consequently Apple IDs are compromised. Thousands of people are scammed by hackers demanding at least ¥500 for 'unlock. With 2FA, passcode locked device and a pinned SIM, it is no longer possible. However since this is still optional, people still get hacked.
I don't know where you get the more entry point, less secure idea from. Maybe a little bit of security 101 can help you?