You can make a difference in the Apple Support Community!

When you sign up with your Apple Account, you can provide valuable feedback to other community members by upvoting helpful replies and User Tips.

💡 Did you know?

⏺ If you can't accept iCloud Terms and Conditions... Learn more >

⏺ If you don't see your iCloud notes in the Notes app... Learn more >

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: Branko9
Branko9 Author
User level: Level 1
5 points

Apple or someone else’s Data leak

Almost all of my passwords stored on my iPhone were shown to me as seen in a data leak, most of them are quite unique and generated by Strong password protection on my device. What is the point of passwords I wonder. There is no way anyone knows any of those passwords, they are not written down anywhere but on apple servers and sites that I use them for.

iPhone 14 Pro Max, iOS 17

Posted on Mar 26, 2024 5:32 AM

Reply
Question marked as Top-ranking reply
User profile for user: MrHoffman
MrHoffman
Community+ 2024
User level: Level 10
126,253 points

Posted on Apr 9, 2024 6:05 PM

Visit haveibeenpwned.com and check which breaches have included your email addresses.


That website maintains a list of breaches, as does Apple.

View in context

Similar questions

3 replies
User profile for user: SravanKrA
SravanKrA
Community+ 2024
User level: Level 10
413,978 points

Mar 26, 2024 5:41 AM in response to Branko9

iCloud Keychain securely stores your login credentials for various websites and apps. Apple has a built-in security feature that checks your saved passwords against known data leaks. If a match is found, you'll be alerted about the compromised password.


Since the probably leaked passwords are out in the open, hackers can potentially use them to try logging into your accounts on other websites or services. This is why iCloud Keychain warns you about these security risks.


Here's a breakdown of what you might do


  1. Change the Compromised Passwords: The most crucial step is to change the passwords for the affected accounts stored in iCloud Keychain. Update your passwords to strong, unique ones that you don't use elsewhere.
  2. Monitor Account Activity: Regularly monitor your account activity for any suspicious behavior. Many services offer features to review login history and active sessions.
  3. Update Security Settings: Review and update your security settings, such as security questions and recovery options, to further enhance the security of your accounts.
  4. Stay Informed: Keep yourself informed about the latest security threats and best practices for online safety to better protect yourself from future incidents.



For better security, it's generally recommended to:

  • Create unique, strong passwords for every website.
  • Keep security recommendations enabled for all sites, including local ones.


Reply
User profile for user: Johnathan Burger
Johnathan Burger
User level: Level 9
68,395 points

Apr 9, 2024 5:52 PM in response to Branko9

Someone else was breached.

The list you are seeing are passwords that were stolen from services that have your account and password stored on their servers.

A lot of people have suffered breaches-T-mobile, AT&T, Yahoo, Wells Fargo, Home Depot, The EPA, United Health, Prudential Insurance all occurred recently.


Here is a current list:

https://www.itgovernanceusa.com/blog/data-breaches-and-cyber-attacks-in-2024-in-the-usa


Headline:

700,095,520 known records breached so far in 658 publicly disclosed incidents



Reply

Apple or someone else’s Data leak

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up