2 Factor Authentication
Why has this become the norm in today's world. In some minds it's easier to steal than to buy. Take a client of mine. iPhone 6s gets stolen. Person who stole it convinces Apple (or carrier employee) it's his and is able to get a new SIM card and register the phone to the owners account in iCloud.
Rightfull owner is now screwed and can't get into their iCloud account since the 2-factor authentication is now going to the stolen phone. Worried about 9000 pictures could be wiped out. What to do.
Cancel phone from your carrier and if you can, delete it from your Apple ID account via find my phone. Then find your receipts for the purchase of the phone. Make sure you have your IMEI and serial number of the phone. Open a case with Apple support (have them call you) escalate to senior advisor. Explain situation send documentation. Once they have all the documentation they send it to Apple security. The goal is to get that phone number associated with the stolen phone off your account. This will take 3-5 days. Once that happens you can get back into your account register your new phone and hopefully another device (iPad, Mac etc) as a trusted device. Change your Apple ID (iCloud) password. Make it hard to remember for anyone but yourself. Best Practices are a combination of letters, numbers and characters. Minimum of 8 of those. More is better.
A few lessons learned here. Apple uses 2 factor for your protection. Is it a nuisance? It depends on who you ask. I don't mind it. But thats me. Secondly if you have more than once device make sure its backup is on and working and you are not relying on iCloud to save everything. Rule of thumb on backups. One local, One cloud, One someplace else.
My client hopes I saved the day. He is calling me Mr. Hotshot. I appreciate that tremendously. The story is not over yet. I'll know more later this week.