Apple pushes password alerts to Safari’s Start Page, which may seem alarming, but it’s legitimate.
I brought up a Start Page in Safari 15 and a banner at the top read “Compromised Password.” I first thought that I must have been redirected to a website that looks like the Safari Start Page. The alert looked just like the kind of phishing technique that would lure someone in to entering the password for a site they weren’t visiting.
But on closer examination and a little research, I realized it was legitimate. I’d never received this kind of alert from Apple in Safari, despite the feature first appearing in operating system releases in the third quarter of 2020. (That makes me lucky.)
Because any legitimate security alert will be duplicated and impersonated by phishers and scammers, you can validate that it’s genuine by visiting one of the following locations:
- In iOS or iPadOS, go to Settings > Passwords.
- In Safari, go to Safari > Preferences > Passwords.
- In macOS 12 Monterey, use Safari or the Passwords preference pane.
Read more at MacWorld.com