Identifying Weak and Compromised Passwords in the Apple Passwords App
Key Information to Consider
- Identify compromised and weak passwords through the Passwords app > Security section.
- Alternatively, access the ‘All’ section to review accounts that need your immediate attention (marked with exclamation points).
- Remember to update passwords flagged as compromised, weak, or reused.
Regardless of your online account types, having strong, complex, and unique passwords is essential to safeguard against data breaches. Unfortunately, even with the prevalence of password managers, many users still opt for easily memorable passwords, which tend to be guessable.
With the release of iOS 18, managing strong passwords and monitoring their security status has become simpler than ever. If you suspect you might have weak passwords that could be at risk due to data breaches, here’s how to identify and rectify the situation.
How to Locate Leaked/Compromised and Weak Passwords in iOS 18’s Passwords App
- Prerequisite: Ensure your device is updated to iOS 18.
The dedicated Passwords app in iOS 18 allows users to view and manage their account credentials securely stored in iCloud Keychain. Follow these steps to review your password status:
- Launch the Passwords app on your iPhone.
- Tap Security. You’ll find a list of accounts and passwords requiring your attention.
- Alternatively, select All to check for accounts highlighted with an exclamation mark.
The severity of the issues will reflect in color coding, with accounts displayed in red or grey. Here’s what the different issues indicate:
- Compromised Password: These passwords have been identified in data breaches. The Apple Password Monitoring feature will label them as ‘compromised’ if they match a continually updated list of passwords known to have been exposed through various online incidents.
- Weak or Easily Guessed Password: These passwords are composed of common sequences, words, or phrases that barely meet minimum standards and are easily guessable by attackers.
- Re-used Password: These passwords are used across multiple accounts.
Steps to Take for Weak or Compromised Passwords
Your first action should be to change any compromised passwords without delay. Tap on the security recommendation and select Change Password… This will direct you to the respective app or website to update your password.
For weak passwords, you can request the Passwords app to suggest a stronger, more complex alternative, or you can create one manually.
When it comes to reused passwords, all accounts using the same password will be flagged. Ensure you change the password for all affected accounts, retaining it only for one.
Should You Be Concerned If Your Passwords Are Compromised?
It can be unsettling to realize that your passwords—and thereby your accounts—are compromised. However, once you change the affected password to a strong alternative, you need not worry excessively. We recommend utilizing iCloud Keychain to generate robust passwords and avoid using the same password across different websites. Additionally, consider setting up a verification code for extra security.
Generating and saving strong passwords is straightforward with the Passwords app in iOS 18. Make use of the available features and regularly check the ‘Security’ section to monitor for any compromised passwords. Until next time, stay safe online!
Leave a Reply