Apple is bringing two-factor authentication to its iCloud.com website and apps, which should make use the web-based versions of its services more secure.
Apple introduced optional two-factor authentication for iTunes accounts last year, but that was purely device-based. Now Apple Insider reports it has begun testing requiring a sign-in code texted to a specified phone if you sign in on an unfamiliar browser for some devices. It isn't yet enabled for all accounts, and it won't appear if you haven't enabled two-factor for your account. (If you haven't, you should.)
Apple rolls out two-step verification for iCloud.com Web apps [Apple Insider via The Verge]