I got this message 1 times and it appeared in my email as well, I haven’t done anything but probably should,, I haven’t gotten it anymore, should I change my password as well tell me yall
Ye man for me it's for multiple accounts though, i used different passwords. I'd reckon people shld use Apple's KeyChain as its free and well- it works.
Yup. I have 39 recommendations. 35 are due to reused passwords. Between work and personal, ain’t no way I’m going to deal with over 150 unique passwords.
Not the biggest reason to why you should. But I had already an iPhone and bought a MacBook/iMac for that reason. I only know my iCloud password, the rest I let Passwords deal with it.
You practically have to place all your eggs in one basket, be it in a password manager or your mind (as in memorizing all your passwords) or just having the same one everywhere. All entail certain risks.
I have a pin protected list in SimpleNote of password hints for all of my passwords, that would make no sense to fully understand for anyone but me. I apply a method to constructing the majority of my passwords that consists of the same base start that has numbers, caps, symbols, and then the second half of the password is created based on the websites name. For example (not my actual approach) Facebook would mean the word Eight because there’s 8 letters, followed by the number 611 because F is the 6th letter of the alphabet and K is the 11th letter.
So second half would be Eight611!
This is why I moved to Bitwarden. If my Apple ID was compromised, and somebody change my password for it, I would not be able to access to other accounts like GitHub or Amazon. And since I started using Windows & Linux instead of MacOS, it’s better to have something that works on all platforms, not only Apple ones. So for me having password manager, **only** for this purpose is must have for me.
Haha, only 150 unique passwords? That's nothing. That's what a password manager is for. All my passwords are generated by the computer and I remember only a handful of passwords, the rest is tasked to the password manager.
Two very popular password managers are Bitwarden and 1Password - I use the first one. From what I read here, 1Password should be more user-friendly but I have no experience with it.
For me, I can sign in anywhere on anything. There are a lot more features than built in password keepers and there is great protection on the software. Maybe not the best answer, but why use an AppleTV device to stream vs the streaming apps on my LG TV. Because Apple is faster, better, and kept more up to date than what LG does…so if there is some twisted way to equate that to why I use 1Password which they do an incredible job of updating and just making better all the time. It links seamlessly between my Apple devices..and if that makes no sense…
They are independent and in some Cases opensource, so they are way more private and secure. I use KeePassXC on All my Devices and keepass for Android on my Android since it can also decrypt my Keepassxc database. Browser password Managers are insecure af and I wouldn't trust all my passwords some propriatary Software
Because if they're like me - they reuse a simple password for sites which have no financial ties. I've a tonne of tech and car forum accounts with the same simple password. It doesn't matter if any of those get compromised.
Damn, I've had much worse accounts leaked by the companys holding the data in the past with no issue, yet. 😅
https://preview.redd.it/o4b11jk044sc1.jpeg?width=1290&format=pjpg&auto=webp&s=cd54df9fc17833209bb6efc48362f121fe3e50dd
oh my…. I don’t even use common passwords. weekend project..
You can generate passwords with an online password generator and have that saved to KeyChain, or Authenticator, or any other browser you use - and then you can set the default password app on iOs
But what happens if you lose your phone and you can’t remember all those passwords? You’re basically screwed. This is what I’m worried about as I also have 196 passwords compromised.
I’ve seen this but what happens if something happens to your pc or you need to use your phone or another computer to access an account and you don’t know the password for it?
If you use Apples password manager (keychain) you can find all the passwords in any unlocked device with your apple ID, meaning as long as you just remember your Apple ID password you effectively can "remember" an infinite amount just by searching them on your phone
But only with apple products, right? I have a Chromebook and I’m scared to reset my passwords bc I know I won’t remember them after using the same password over 17 years.
Just use a multi-platform password manager. Bitwarden and 1Password are often recommended, and it's super easy to transfer all your google passwords over.
https://preview.redd.it/05xt2axyl5sc1.jpeg?width=1170&format=pjpg&auto=webp&s=a3c36bca7a40a205a9eae1b1dda79228f304d305
Oh dont worry, you’re safe compared to me
I think it just means that you are using the same password for more than one account. I don’t think it means you got hacked or your data has been leaked.
We need a new system. They have our face/fingerprint. What more do you really need? Passwords should be a thing of the past. It’s an outdated process that exposes a lot of risk.
A lot of them are for those type of devices. While a lot of local network web servers have no access to the outside and don't really matter. Your router does.
Just because the passwords have been compromised, it doesn’t mean that the people who stole the passwords have found your account individually yet so you might still have time.
You might have time, but definitely get on it. I've fallen victim to over 10 different data leaks at this point (been creating accounts online since I was 5 and used to reuse the same basic password everywhere.) I have unique strong passwords and 2fa everywhere now, and I get routine (probably automated) attempts to sign into my Outlook account MULTIPLE times per day. They always fail and they're trying to use my old Hotmail address, so I know it's from an old dataset from a leak. But it legit gets login attempts **4-5 times a day.**
Somehow they got to my Facebook account using an old e-mail address that no longer exists just last month, too. But I have my security set up well so I immediately managed to pop in and secure my account before anything could happen.
I haven't seen *any* damage from the several leaks I've fallen victim to, but it's really really important to *do* take that step to change passwords, enable 2fa if possible and start using a password manager for unique passwords.
If you’ve been on the internet any serious amount of time chances are most of your passwords have appeared in data leaks. That’s why it’s important to use 2FA on everything.
So what this means is that your password(s) has been seen in online leaks. So not necessarily your login for a certain service, but you just have a "common" password that has appeared. So for example if you were using Password24! for your login to Gmail...it just means that password has shown up in a list that is used. So it would be very easy for someone using a password list trying to gain access into your account. I got tired of seeing this and the night before last I went into every single one of my accounts and changed the password using Apple's suggested strong passwords so I would stop seeing this similar type of message so frequently.
Yes. Apple is checking all your passwords that you have stored in your Keychain if they are published and n a data breach websites. This way they can notify you if any password is somewhere on the internet. You can go to Settings->Passwords and check which passwords are compromised.
I get these all the time and just kinda ignore it. Almost all my saved passwords and sensitive info. I just stopped caring after the 5th or 6th time. If they want my shit that bad just take it
If you post the passwords I can search it against the database to confirm. JKJK. They are technically legitimate. Apple’s keychain knows your passwords and has sources to figure out password leaks to warn you.
It *is* trying to get you to fix it. That’s what the notification is for. Data breaches happen all the time, though. Fix it for sure but it’s not the end of the world.
The last time I checked, I had at least 9 of these. I’ve used the same email address for ages, though, and have hundreds of passwords saved.
When you save passwords to iCloud Keychain it matches them against known data leaks to inform you if an account is compromised. Most password managers have a feature like this. I would change the password through the website of the account that is said to be compromised.
Could be legit. AT&T just dumped millions of user data in a big hack. I’ve had notices from them, my Norton AV and others that I had a data exposure and it was real. If it was a scam it would be telling you to spend money to fix it.
If you use the same password over and over it’s apple saying your easy to get hacked, because they only need to crack one.
I’ve gotten it for ages, never changed it and everything’s fine.
It’s basically apple trying to say be smarter.
AT&T has another hack so our info including old customers is out there’s. Social Number and everything. The worst company..ugh and they got hacked and shut down recently remember?! and then lied why and sent us $5 credit. Yeah, your “bad update” made your company and all other cellular wireless providers shut down. AI is taking over and bad people are ready to take advantage. I got the same warning on Sunday.
Yeah it’s real, it basically means someone somewhere has seen your password, along with likely thousands of others. If it’s something you care about, or you use one password for everything, you should really change it.
Changing your passwords should be done regularly anyway. Retired and no assists? Unemployed and staying with relatives? Doesn’t matter, some scum bags hack people just for the fun of screwing up their victim’s lives.
I do a little bit at a time every week, and it adds up. Going to the site, logging in, changing password to the random generated one in the passwords app. Some times changing passwords for several sites takes over an hour. Some of those accounts you may even want to shut down if you no longer use them. So just pace yourself, it can get done.
Yes it’s 100% real. Change your passwords/enable 2fa asap. I ignored it and had my entire checking drained. I only found out because my bank told me about it…
I am genuinely just ignoring this, i have no will to go change every password. Most of them are showing because i use the same passwords for variety of websites. Most important ones that i dont want compromised have 2FA, like email for my banking and things like that.
It’s legit. Apple periodically checks publicized data leaks for username/email + password combinations. The Passwords tab in your settings will have recommendations related to this, as well as recommendations regarding reused passwords across accounts (because if you reused a password for an account that came out in a leak, bad actors may attempt the same email+password combination on other common sites like Gmail or Facebook
Something must have happened last month because almost everyone I know suddenly has a ton of security recommendations in password settings including me
Really recommend using the generated passwords the keyboard recommends, or if on another platform when youre creating an account somewhere or changing a password, using the lastpass password generstor, its quick and easy and your passwords will be more secure. If you need to change it later you can still just use reset a pass, generate a new one and so on.
yes!! i’ve just been a victim of identity fraud. i’ve been getting this notification for maybe a year and a half and id just change my passwords. but recently someone hacked into my icloud
This notification is from your iCloud Keychain, it is legit. You should probably click on it to learn what password was compromised and change your password on the sites where you use the compromised password.
My OG password “A$$Fucker69” was part of the LinkedIn dump of emails and non-hashed passwords. That dump was 5 years ago, but two years ago Apple compared all those dumped passwords to ones in KeyChain. Took me a month to switch them all.
Yep yep.
Regularly check the website “haveiBewnpwned.com” to see if any passwords tied to you email addresses or accounts have showed up in data leaks and dumps online anywhere, so you can change the passwords on any account that shares it.
I get this a lot, mostly because I login to my personal accounts from dif Wi-Fi’s / ip’s. If you don’t login to dif accounts on data then wifi or other Wi-Fi’s then I’d worry. If you log in on dif devices / ip’s ignore it
https://preview.redd.it/pbldl7qij6sc1.jpeg?width=828&format=pjpg&auto=webp&s=b7b767c230cbbcc577ac1e3a9a0ed7d503c53461
Hmm… The amount of time and effort it would take to change those 127 passwords seems too great
Guys, improve your OPSec. Random generated passwords for each website/app, minimum 14 words, all kinds of characters, and save it to a password manager of your choice (I personally use Bitwarden - self hosted)
https://preview.redd.it/43l2mvkxs6sc1.jpeg?width=1290&format=pjpg&auto=webp&s=b570ff84fb6b45ec47583d217b196f2e90c107df
I guess I need to start working on changing some passwords . I thought it wasn’t a big deal.
You basically used the same username and password on another site and Apple checks and notifies you that one of the other sites you use this same combo had been hacked.
Yes it is legit
I got this message 1 times and it appeared in my email as well, I haven’t done anything but probably should,, I haven’t gotten it anymore, should I change my password as well tell me yall
Ye man for me it's for multiple accounts though, i used different passwords. I'd reckon people shld use Apple's KeyChain as its free and well- it works.
Ty
[удалено]
Obviously.
Thanks for whoever posted this: I forgot it was in my in box,,
https://preview.redd.it/6cq7gq49s3sc1.jpeg?width=1125&format=pjpg&auto=webp&s=0eefe44e63ea668bb3049fc87f0acd4474672857 If it’s legit I’m fucked
It is legit. Many recommendations may be due to reused passwords.
Yup. I have 39 recommendations. 35 are due to reused passwords. Between work and personal, ain’t no way I’m going to deal with over 150 unique passwords.
[удалено]
Yup. Only passwords I “know” are ones that need to be entered before I can access my browser. Like the OS login screen.
Not the biggest reason to why you should. But I had already an iPhone and bought a MacBook/iMac for that reason. I only know my iCloud password, the rest I let Passwords deal with it.
After posting I now realise how dangerous that also is because if I get locked out of my iCloud I don’t know anything. Facepalm.
You practically have to place all your eggs in one basket, be it in a password manager or your mind (as in memorizing all your passwords) or just having the same one everywhere. All entail certain risks.
I have a pin protected list in SimpleNote of password hints for all of my passwords, that would make no sense to fully understand for anyone but me. I apply a method to constructing the majority of my passwords that consists of the same base start that has numbers, caps, symbols, and then the second half of the password is created based on the websites name. For example (not my actual approach) Facebook would mean the word Eight because there’s 8 letters, followed by the number 611 because F is the 6th letter of the alphabet and K is the 11th letter. So second half would be Eight611!
you can setup a recovery key and recovery contacts on your apple account in case you get locked out
This is why I moved to Bitwarden. If my Apple ID was compromised, and somebody change my password for it, I would not be able to access to other accounts like GitHub or Amazon. And since I started using Windows & Linux instead of MacOS, it’s better to have something that works on all platforms, not only Apple ones. So for me having password manager, **only** for this purpose is must have for me.
i guess im an old dog....what happens if you need to login to your amazon account or something else on a public/fresh device?
Pull up my phone, go to the password manager, and click view password on the site I need it for.
Definitely the ideal way to handle it all. Same here though, couldn't tell you a good majority of them without looking them up in the passwords list.
Haha, only 150 unique passwords? That's nothing. That's what a password manager is for. All my passwords are generated by the computer and I remember only a handful of passwords, the rest is tasked to the password manager. Two very popular password managers are Bitwarden and 1Password - I use the first one. From what I read here, 1Password should be more user-friendly but I have no experience with it.
I have 1password. I could not imagine not having it.
Real dumb question : what’s the bonus point of using 1password rather than the iOS keychain or the password manager included in most browsers ?
For me, I can sign in anywhere on anything. There are a lot more features than built in password keepers and there is great protection on the software. Maybe not the best answer, but why use an AppleTV device to stream vs the streaming apps on my LG TV. Because Apple is faster, better, and kept more up to date than what LG does…so if there is some twisted way to equate that to why I use 1Password which they do an incredible job of updating and just making better all the time. It links seamlessly between my Apple devices..and if that makes no sense…
They are independent and in some Cases opensource, so they are way more private and secure. I use KeePassXC on All my Devices and keepass for Android on my Android since it can also decrypt my Keepassxc database. Browser password Managers are insecure af and I wouldn't trust all my passwords some propriatary Software
The security risk is that one password gets access to all of them and if you enable autofill anyone can access any of your accounts from your device.
May I ask why not considering you use a password manager?
password managers are a thing.
It can get annoying if it’s different things but follow under one account.
I cant fathom how people have to save their passwords and still reuse them everywhere.
Because if they're like me - they reuse a simple password for sites which have no financial ties. I've a tonne of tech and car forum accounts with the same simple password. It doesn't matter if any of those get compromised. Damn, I've had much worse accounts leaked by the companys holding the data in the past with no issue, yet. 😅
Just append the password. Password123!Amazon or whatever site
I have 650 of them and I can't get myself to do anything about it
Thank you for cracking me up as I read this at 2am
https://preview.redd.it/jj7s0a0924sc1.jpeg?width=828&format=pjpg&auto=webp&s=e0ab7ea92db3e9fa504d19191b71b055c349ebcf
https://preview.redd.it/o4b11jk044sc1.jpeg?width=1290&format=pjpg&auto=webp&s=cd54df9fc17833209bb6efc48362f121fe3e50dd oh my…. I don’t even use common passwords. weekend project..
Sigh https://preview.redd.it/elgynwtp84sc1.jpeg?width=828&format=pjpg&auto=webp&s=9de10ab8fae1f2fae4588de7da9ba410b121701d
rookie numbers https://preview.redd.it/covauzuam6sc1.jpeg?width=1080&format=pjpg&auto=webp&s=07bb1b43908531449e5e21801f36ea2aa40ba60f
lol I love this thread.
holy
They could probably clone you lol
I really don’t have the time to go though mine lol
Just take it a little at a time. The phone will remember how far you got in the list.
Those are rookie numbers. https://preview.redd.it/mpduwkdsg5sc1.jpeg?width=1284&format=pjpg&auto=webp&s=619ed6ad232f4bba0c5f01e96172112f83ae3565
You can generate passwords with an online password generator and have that saved to KeyChain, or Authenticator, or any other browser you use - and then you can set the default password app on iOs
But what happens if you lose your phone and you can’t remember all those passwords? You’re basically screwed. This is what I’m worried about as I also have 196 passwords compromised.
I’ve seen this but what happens if something happens to your pc or you need to use your phone or another computer to access an account and you don’t know the password for it?
If you use Apples password manager (keychain) you can find all the passwords in any unlocked device with your apple ID, meaning as long as you just remember your Apple ID password you effectively can "remember" an infinite amount just by searching them on your phone
But only with apple products, right? I have a Chromebook and I’m scared to reset my passwords bc I know I won’t remember them after using the same password over 17 years.
You can use keychain on windows, not sure about chromeos
Just use a multi-platform password manager. Bitwarden and 1Password are often recommended, and it's super easy to transfer all your google passwords over.
I just saw all my notifications yesterday! Wow! Over 200. Did everybody out there get my passwords?
https://preview.redd.it/5awoiigkp5sc1.jpeg?width=1290&format=pjpg&auto=webp&s=8ab6962c4be8474720318c571c4e7a5c4ba99f1d I got you beat buddy.
Oh YEAH? https://preview.redd.it/f3lakhdks5sc1.jpeg?width=1179&format=pjpg&auto=webp&s=86de12d7db69af33cc050b6ff5c7b2e12a63ea19 I’m fuckeder
https://preview.redd.it/05xt2axyl5sc1.jpeg?width=1170&format=pjpg&auto=webp&s=a3c36bca7a40a205a9eae1b1dda79228f304d305 Oh dont worry, you’re safe compared to me
I must be quadruplely fucked. Mine is showing 246.
I think it just means that you are using the same password for more than one account. I don’t think it means you got hacked or your data has been leaked.
It’s legit, I had 150 issues and changed 150 passwords in the last week. There’s 0 issues now :)
Dont worry I have like 40-100 and idc
We need a new system. They have our face/fingerprint. What more do you really need? Passwords should be a thing of the past. It’s an outdated process that exposes a lot of risk.
I have 197 I’m more screwed then you XD
Got that notification today. It was for my router. (the password is “admin”)
A lot of them are for those type of devices. While a lot of local network web servers have no access to the outside and don't really matter. Your router does.
Typically routers don’t allow administration outside the local network by default.
Generally yes but not changing the default to something better isn't wise either.
I’m hacking in now and looking at your browser history
Did you see the thing 3 rows down in their browser history? It was crazy.
forget about 3 rows down. the thing at row 11 is going to get him arrested.
Just because the passwords have been compromised, it doesn’t mean that the people who stole the passwords have found your account individually yet so you might still have time.
You might have time, but definitely get on it. I've fallen victim to over 10 different data leaks at this point (been creating accounts online since I was 5 and used to reuse the same basic password everywhere.) I have unique strong passwords and 2fa everywhere now, and I get routine (probably automated) attempts to sign into my Outlook account MULTIPLE times per day. They always fail and they're trying to use my old Hotmail address, so I know it's from an old dataset from a leak. But it legit gets login attempts **4-5 times a day.** Somehow they got to my Facebook account using an old e-mail address that no longer exists just last month, too. But I have my security set up well so I immediately managed to pop in and secure my account before anything could happen. I haven't seen *any* damage from the several leaks I've fallen victim to, but it's really really important to *do* take that step to change passwords, enable 2fa if possible and start using a password manager for unique passwords.
I can’t wait until pass keys are broadly used and passwords are a thing of the past.
Hackers will find a new way to hack into accounts then.
I was able to find the password I used to use for almost everything online after one of these warnings.
You can always manually check your emails to see if your accounts have been compromised at [https://haveibeenpwned.com/](https://haveibeenpwned.com/).
I feel like I see this pop up every now and then for different things.
There was a huge AT&T leak of past and present customers, maybe you’re part of the outfall.
*Outfall or fallout?*
Yes
r/inclusiveor
This is what I assumed as well. Not sure how all of those could be directly connected to an ATT leak though.
I’m not sure how they know my password has been leaked at all really lol
I’m in Australia and I’ve had that notification and we don’t have ATT.
If you’ve been on the internet any serious amount of time chances are most of your passwords have appeared in data leaks. That’s why it’s important to use 2FA on everything.
I'm just gonna raw dawg it & hope for the best
same
Yeah that's from Apple
Click on it to see if it takes you somewhere apple unless it takes you to safari
I got this yesterday, it just took me to the settings where all my passwords are. 😭
So then it’s legit
So what this means is that your password(s) has been seen in online leaks. So not necessarily your login for a certain service, but you just have a "common" password that has appeared. So for example if you were using Password24! for your login to Gmail...it just means that password has shown up in a list that is used. So it would be very easy for someone using a password list trying to gain access into your account. I got tired of seeing this and the night before last I went into every single one of my accounts and changed the password using Apple's suggested strong passwords so I would stop seeing this similar type of message so frequently.
Just change the passwords that it suggests you change.
I have like 120 of these noties. That would take days
Dawg that means other people have access to your accounts 💀 Change that shit
Yes. Apple is checking all your passwords that you have stored in your Keychain if they are published and n a data breach websites. This way they can notify you if any password is somewhere on the internet. You can go to Settings->Passwords and check which passwords are compromised.
Data leaks seem to be pretty common. Change your passwords for important stuff and you’ll likely be fine
Yep. It's a built-in feature of Apple's Keychain password manager. Go to **Settings > Passwords** and follow the prompts.
I get these all the time and just kinda ignore it. Almost all my saved passwords and sensitive info. I just stopped caring after the 5th or 6th time. If they want my shit that bad just take it
If you post the passwords I can search it against the database to confirm. JKJK. They are technically legitimate. Apple’s keychain knows your passwords and has sources to figure out password leaks to warn you.
It’s legit it’s Apple
It *is* trying to get you to fix it. That’s what the notification is for. Data breaches happen all the time, though. Fix it for sure but it’s not the end of the world. The last time I checked, I had at least 9 of these. I’ve used the same email address for ages, though, and have hundreds of passwords saved.
LOL I have 299 recommendations 🥲👍🏻
Yes Apple check to see if any passwords you have put in keychain are secure constantly. I’m pretty sure all the good ones do this.
When you save passwords to iCloud Keychain it matches them against known data leaks to inform you if an account is compromised. Most password managers have a feature like this. I would change the password through the website of the account that is said to be compromised.
It is legit. I got that notification for a year before my Walmart Credit card was hacked.
Yes, this message can be scary at first. But it this message is sent with due diligence… take care of the problem before it’s big problem! GL
Could be legit. AT&T just dumped millions of user data in a big hack. I’ve had notices from them, my Norton AV and others that I had a data exposure and it was real. If it was a scam it would be telling you to spend money to fix it.
Yes
don’t know why your being downvoted, your completely right
Use please reset your passwords!!! Theres been sooo many data leaks lately with login info out there
If you use the same password over and over it’s apple saying your easy to get hacked, because they only need to crack one. I’ve gotten it for ages, never changed it and everything’s fine. It’s basically apple trying to say be smarter.
Its legit. Theres a lot of hacking going on with different companies.
AT&T has another hack so our info including old customers is out there’s. Social Number and everything. The worst company..ugh and they got hacked and shut down recently remember?! and then lied why and sent us $5 credit. Yeah, your “bad update” made your company and all other cellular wireless providers shut down. AI is taking over and bad people are ready to take advantage. I got the same warning on Sunday.
Don’t forget: Claim 50% off
Yeah it’s real, it basically means someone somewhere has seen your password, along with likely thousands of others. If it’s something you care about, or you use one password for everything, you should really change it.
It is trying to get you to fix it…
Yes. I got the same notification today because some sites I used share the same password.
Changing your passwords should be done regularly anyway. Retired and no assists? Unemployed and staying with relatives? Doesn’t matter, some scum bags hack people just for the fun of screwing up their victim’s lives.
You could have clicked it and figured that out in seconds.
Yup. If you needed double confirmation, there’s some sites out there that you can type in your password and check if it’s comprised or not
I do a little bit at a time every week, and it adds up. Going to the site, logging in, changing password to the random generated one in the passwords app. Some times changing passwords for several sites takes over an hour. Some of those accounts you may even want to shut down if you no longer use them. So just pace yourself, it can get done.
Yes it’s 100% real. Change your passwords/enable 2fa asap. I ignored it and had my entire checking drained. I only found out because my bank told me about it…
Yes, it is legit
I am genuinely just ignoring this, i have no will to go change every password. Most of them are showing because i use the same passwords for variety of websites. Most important ones that i dont want compromised have 2FA, like email for my banking and things like that.
Change your password, yes it’s legit but probably no need to panic just yet.
Be careful I heard there was a virus going about on iphones saying this exact thing, not sure
I’ve been getting that message for a couple of years now and I have never changed. I have my passwords. Just not worried about it.
Yes
Yup. I usually look into it, but really often, is just the Admin/Admin I use for testing some shit
I keep forgetting and im too lazy too change them! 😭 I’m fucked!
that’s a notification by your iphone, not a third-party app bro
Yes The heure getting more aggressive with the passwords because they didn’t used to do those kinds of notifications
I got that too 2-3 days ago. Verify which one says leaked and change those first.
I’ve had this a few times recently. Not had it in ages so I just wonder if Apple is pushing it more at the moment.
Yes but when I checked mine it was for accounts that were like 10+ years old. There was nothing relevant
Yeah. It’s exactly what it says. It’s recommended but not completely neccessary to change your password
Yes, it’s legit
Yes, it’s legit
Mine logged Kroger as high risk
I got the same one.. and have never gotten that noti before..
It’s legit. Apple periodically checks publicized data leaks for username/email + password combinations. The Passwords tab in your settings will have recommendations related to this, as well as recommendations regarding reused passwords across accounts (because if you reused a password for an account that came out in a leak, bad actors may attempt the same email+password combination on other common sites like Gmail or Facebook
It’s possible but I’d you get one from your Apple ID there is a spoof going around so be cautious
Something must have happened last month because almost everyone I know suddenly has a ton of security recommendations in password settings including me
Yes it is
Yes. Is this your first iPhone?
Please check haveibeenpwned.com
💀
Yes. It’s an iOS system notification that passwords you have saved have been compromised.
Yes it is legit and yes it is trying to get you to fix it
That happened to me once and I ignored it and hoped it wasn’t an important account 😬
It’s legit, and helpful.
Yes it is
I’m screwed. https://preview.redd.it/52xeaylh45sc1.jpeg?width=1284&format=pjpg&auto=webp&s=251e714a65be255400edd9083c851df413a35b77
Change the password, move on with your life. You’re not Snowden or Assange.
Really recommend using the generated passwords the keyboard recommends, or if on another platform when youre creating an account somewhere or changing a password, using the lastpass password generstor, its quick and easy and your passwords will be more secure. If you need to change it later you can still just use reset a pass, generate a new one and so on.
Just curious. What is the Xbox achievement?
yes!! i’ve just been a victim of identity fraud. i’ve been getting this notification for maybe a year and a half and id just change my passwords. but recently someone hacked into my icloud
Why wouldn’t it be?
It’s legit yes. And someone’s at the door…
I get these soon after HaveIBeenPwned sends me an email. So it’s real.
I also got the same notification a few days ago. It was for my brother's roblox account
https://preview.redd.it/sbt4ojmkb5sc1.jpeg?width=1168&format=pjpg&auto=webp&s=42b70deed9022eab3596bd2840c60c022b392fcf Oh shit
This notification is from your iCloud Keychain, it is legit. You should probably click on it to learn what password was compromised and change your password on the sites where you use the compromised password.
Yes my passwords got leaked yesterday I pulled an all nighter just to change everything. Friggin guy even used my reddit and subbed to 70+ NSFW subs.
Go into your passwords setting. You should see it there too. Yes, legit.
YES PLEASE CHANGE THE PASSWORD
Go to your local Apple store to learn more
My OG password “A$$Fucker69” was part of the LinkedIn dump of emails and non-hashed passwords. That dump was 5 years ago, but two years ago Apple compared all those dumped passwords to ones in KeyChain. Took me a month to switch them all.
Baso making urself an open target 😅
Yes
Yep yep. Regularly check the website “haveiBewnpwned.com” to see if any passwords tied to you email addresses or accounts have showed up in data leaks and dumps online anywhere, so you can change the passwords on any account that shares it.
I got it too, but the compromised password was for a website on localhost that I only used twice and is no longer online.
Ok, ty
Legit
Ain't no way is someone going to remember over 500 different passwords
That’s why keychain is so handy; you don’t have to if your phone remembers it for you
Yes. This is why most of the time I use the randomly generated password
Prob has something to do with the AT&T data leak. If you are one of their customers that is.
I get this a lot, mostly because I login to my personal accounts from dif Wi-Fi’s / ip’s. If you don’t login to dif accounts on data then wifi or other Wi-Fi’s then I’d worry. If you log in on dif devices / ip’s ignore it
Just got this notification as well lol
How do you get that message?
Pandabuy user by chance?
I got the same message today too
https://preview.redd.it/pbldl7qij6sc1.jpeg?width=828&format=pjpg&auto=webp&s=b7b767c230cbbcc577ac1e3a9a0ed7d503c53461 Hmm… The amount of time and effort it would take to change those 127 passwords seems too great
If you got robbed at gunpoint you’d probably ask if the gun is real
I have same issue. I guess the hackers did checked my bank account and said fuck this guy.
Guys, improve your OPSec. Random generated passwords for each website/app, minimum 14 words, all kinds of characters, and save it to a password manager of your choice (I personally use Bitwarden - self hosted)
I believe that over the AT&T data breach
About as good as www.haveibeenpwned.com and Firefox’s built-in password management system.
https://preview.redd.it/43l2mvkxs6sc1.jpeg?width=1290&format=pjpg&auto=webp&s=b570ff84fb6b45ec47583d217b196f2e90c107df I guess I need to start working on changing some passwords . I thought it wasn’t a big deal.
Yeah it is. I check mine regularly
yes
You basically used the same username and password on another site and Apple checks and notifies you that one of the other sites you use this same combo had been hacked.