Sarai Hannah Ajai's Apple iPhone 17 – Third Occurrence of Yubico Security Key Authentication Failure During Two-Factor Authentication (Third Occurrence Associated With Verizon Service)

INCIDENT REPORT

Apple iPhone 17 – Third Occurrence of Yubico Security Key Authentication Failure During Two-Factor Authentication

(Third Occurrence Associated With Verizon Service)

Reporting Party: Sarai Hannah Ajai

Device: Apple iPhone 17

Associated Computer: Apple Mac Mini M1

Carrier: Verizon Wireless

Date of Incident: February 15, 2026

Approximate Time: 3:25 PM (local)

 

I. SUMMARY OF INCIDENT

On February 15, 2026, at approximately 3:25 PM, I experienced a repeated and unexplained failure of two registered Yubico physical security keys during the Apple Two-Factor Authentication (2FA) process while attempting to sign in to my Apple iCloud account from my Apple Mac Mini M1.

Despite the security keys being physically present, properly registered, and protected by valid four-digit PINs, Apple’s authentication system repeatedly returned the error message:

“Failed to verify your identity. Try again.”

This incident represents the third time I have been required to reset and re-register my Yubico security keys due to authentication failures that were not initiated by me and occurred without my consent or prior notice.

 

II. FACTUAL CHRONOLOGY

A. Initial Authentication Failure

1. At approximately 3:25 PM, I attempted to sign in to my Apple iCloud account from my Apple Mac Mini M1 using:

o My Apple ID email address and password

o Apple Two-Factor Authentication via Yubico physical security keys

2. During the security-key verification step, Apple iCloud returned the error message:

“Failed to verify your identity. Try again.”

(See Exhibit A)

3. Multiple authentication attempts resulted in the same error, despite:

o Correct password entry

o Physical presence of the security keys

o Proper connection to the device

 

B. Prior Security Key Resets

4. On February 8, 2026, I had previously registered the same two Yubico security keys with Apple iCloud. Shortly thereafter, the keys became non-functional, and their assigned PINs were rejected during authentication attempts.

5. As a result, I was forced to reset the PINs and re-register the keys on that date.

(See Exhibit B)

 

C. Third Security Key Re-Registration

6. On February 15, 2026, following the repeated authentication failure, I again removed the existing security-key configuration from:

Apple ID → Sign-In & Security → Two-Factor Authentication → Security Keys

7. I then re-added both Yubico security keys for the third time, assigning new PINs and clearly labeling the devices as:

o Red Dots Security Key

o Purple & Pink Security Key

(See Exhibit D)

 

D. Successful Authentication After Reconfiguration

8. After completing the third re-registration, I returned to my Apple Mac Mini M1 and attempted to sign in again.

9. Following the reconfiguration, I was able to successfully authenticate and access my Apple iCloud account using the two Yubico security keys.

(See Exhibit C)

 

III. SECURITY AND ACCOUNT-LEVEL CONCERNS

The following facts are concerning from a security and reliability standpoint:

• Repeated invalidation of properly registered physical security keys

• Forced PIN resets occurring without user-initiated changes

• Authentication failures across trusted Apple hardware

• Successful access only after complete removal and re-registration of keys

These conditions raise reasonable concerns regarding account-level instability, authentication integrity, or backend synchronization issues affecting my Apple ID, iPhone 17, or associated services.

This report does not assert a cause, but documents a pattern of repeated authentication failure involving hardware security keys that are designed to prevent unauthorized access.

 

IV. EVIDENCE AND EXHIBITS

• Exhibit A: Apple iCloud error message stating “Failed to verify your identity. Try again.” (February 15, 2026, 3:25 PM)

• Exhibit B: Prior Two-Factor Authentication screen showing Yubico security keys added on February 8, 2026

• Exhibit C: Successful Apple iCloud login after third re-registration of security keys

• Exhibit D: Apple Two-Factor Authentication screen showing Yubico security keys re-added on February 15, 2026

All exhibits are preserved in original format.

 

V. ACTIONS TAKEN

• Documented authentication failures with screenshots

• Reset and re-registered Yubico security keys

• Assigned new PINs to each physical key

• Successfully regained access after reconfiguration

• Prepared this report to preserve a contemporaneous record

 

VI. PURPOSE OF REPORT

This Incident Report is submitted to:

• Document repeated failures of hardware-based Two-Factor Authentication

• Preserve evidence of account-level authentication instability

• Support review by Apple, Verizon, or appropriate investigative bodies

• Protect the reporting party’s identity, account integrity, and security posture

I affirm that the information above is true and accurate to the best of my knowledge and belief.

Respectfully Submit,

Sarai Hannah Ajai