Technologist Mag
  • Home
  • Tech News
  • AI
  • Apps
  • Gadgets
  • Gaming
  • Guides
  • Laptops
  • Mobiles
  • Wearables
  • More
    • Web Stories
    • Trending
    • Press Release

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

What's On

Home Depot Promo Codes and Coupons for May 2025

17 May 2025

3 new Xbox Game Pass games to play this weekend (May 16-19)

17 May 2025

Paramount+ sets a summer debut for Star Trek: Strange New Worlds season 3

17 May 2025

NYT Crossword: answers for Friday, May 16

16 May 2025

NYT Connections: hints and answers for Friday, May 16

16 May 2025
Facebook X (Twitter) Instagram
Facebook X (Twitter) Instagram
Technologist Mag
SUBSCRIBE
  • Home
  • Tech News
  • AI
  • Apps
  • Gadgets
  • Gaming
  • Guides
  • Laptops
  • Mobiles
  • Wearables
  • More
    • Web Stories
    • Trending
    • Press Release
Technologist Mag
Home » Apple’s Passwords App Had a Security Flaw That Exposed Users to Phishing Attacks for Three Months
Apps

Apple’s Passwords App Had a Security Flaw That Exposed Users to Phishing Attacks for Three Months

By technologistmag.com19 March 20252 Mins Read
Share
Facebook Twitter Reddit Telegram Pinterest Email

Apple released a dedicated Passwords app last year, as part of the iOS 18 software update. Instead of a menu inside the Settings app, users can access their passwords and other details via a standalone app. However, the Passwords app had a serious security flaw that exposed users to potential phishing attacks from attackers who were on the same Wi-Fi network. The company recently disclosed that it fixed the security flaw three months after iOS 18 was released.

Apple Fixed Passwords App Vulnerability With iOS 18.2 Update

The iPhone maker recently amended its release notes (via 9to5Mac) for the iOS 18.2 update, which was released in December. The document now includes two entries, both titled ‘Passwords’, that describe fixes for the app. Apple has credited Mysk security researchers Talal Haj Bakry and Tommy Mysk with identifying the security vulnerability.

According to the company’s updated support document, the first patch for the Passwords app on iOS 18.2 fixed two flaws that allowed a user in a privileged network position to leak sensitive information, and alter network traffic. 

The Mysk researchers discovered that Apple’s Passwords app wasn’t using encrypted connections (HTTPS) when fetching details of specific sites, such as site icons. Similarly, password reset pages were loaded over HTTP.

The same flaw would allow an attacker on the same Wi-Fi network to intercept the network request, and direct the device to load a phishing website instead of the legitimate one. If the user trusts the webpage, they might enter their credentials on the fraudulent website.

The cybersecurity firm reported the issue to Apple in September, and Apple’s revised support document reveals that it rolled out fixes for the issue with iOS 18.2 in December. Eligible iPhone and iPad models that are running on iOS 18.2 and iPadOS 18.2 or newer versions should not be vulnerable to the flaw.

Share. Facebook Twitter Pinterest LinkedIn Telegram Reddit Email
Previous ArticleVivo X200 Ultra Colour Options Leaked; Tipped to Get 2K Resolution Display
Next Article Research suggests the VR headset heyday could be behind us

Related Articles

Netflix Unveils AI-Powered Feature That Will Blend Ads With Shows and Movies

16 May 2025

YouTube Announces Gemini-Powered ‘Peak Points’ to Pinpoint Optimal Ad Moments in a Video

16 May 2025

Google Adding New AI and Accessibility Features for Android and Chrome Browser

16 May 2025

Google Gemini Advanced Users Can Now Connect the Chatbot With GitHub

15 May 2025

TikTok Adds Support for AI-Powered Alternative Text and Other Accessibility Features

15 May 2025

OpenAI Expands GPT-4.1 AI Models With Advanced Coding Capabilities to ChatGPT

15 May 2025
Stay In Touch
  • Facebook
  • Twitter
  • Pinterest
  • Instagram
  • YouTube
  • Vimeo

Subscribe to Updates

Get the latest tech news and updates directly to your inbox.

Don't Miss

3 new Xbox Game Pass games to play this weekend (May 16-19)

By technologistmag.com17 May 2025

As with every game subscription service, some weeks are weaker while others are incredibly strong.…

Paramount+ sets a summer debut for Star Trek: Strange New Worlds season 3

17 May 2025

NYT Crossword: answers for Friday, May 16

16 May 2025

NYT Connections: hints and answers for Friday, May 16

16 May 2025

NYT Strands today: hints, spangram and answers for Friday, May 16

16 May 2025
Technologist Mag
Facebook X (Twitter) Instagram Pinterest
  • Privacy
  • Terms
  • Advertise
  • Contact
© 2025 Technologist Mag. All Rights Reserved.

Type above and press Enter to search. Press Esc to cancel.