This is a much more secure, if a little more annoying, way to protect your AppleID. Since there is real money involved with your iTunes and App Store purchases now, I strongly recommend you set up two-step authentication on your own AppleID.
I recommend you go to appleid.apple.com and Manage your Account, then take 10 minutes and set up two-step authentication with a trusted device or two. Then you need your password AND the device to update your account security preferences (this makes it much harder to swipe your account and change your password).
Hat tip: The Verge