Apple’s Passwords app was vulnerable to phishing attacks for nearly three months after launch<div class="feat-image">
</div><p>In
iOS 18, Apple spun off its Keychain password management tool—previously only tucked away in Settings—into a standalone app called
Passwords. It was the company’s first move at making credential management more convenient for users. It’s now been revealed that a serious HTTP bug left Passwords users vulnerable to phishing attacks for nearly three months, from the initial release of iOS 18 until the patch in iOS 18.2.</p>
<a data-layer-pagetype="post" data-layer-postcategory="ios-18,passwords" data-layer-viewtype="unknown" data-post-id="994428" href="
https://9to5mac.com/2025/03/18/apples-passwords-app-was-vulnerable-to-phishing-attacks-for-nearly-three-months-after-launch/#more-994428" class="more-link">moreâ
Apple’s Passwords app was vulnerable to phishing attacks for nearly three months after launch
