Storing sensitive data on the contact list is unsafe since many apps seek access to it. Mobile phone notes are also not secure. Besides, with reports of artificial intelligence (AI) being able to crack over 50% passwords in one minute, many are vulnerable to financial frauds and risk losing sensitive data.
In general, you shouldn't store passwords on iPhone Notes. Even though iPhone Notes offers the ability to lock your notes with a password, the app isn't specifically designed to store highly sensitive information. Therefore, you are putting your passwords at risk when storing them on iPhone notes.
Locked Notes are encrypted and they would need the password used to lock them. And, unless your iPhone is jailbroken, it cannot be hacked. However, your Apple ID can be compromised, which would allow someone access to your iCloud account if you are using it to store Notes.
You can lock notes with your iPhone passcode. Or you can create a unique password only for Notes. Both options keep your information secure with end-to-end encryption for iCloud accounts.
iCloud Keychain is a good option for storing passwords on Apple devices in a relatively secure fashion. It can help users choose strong passwords and make them easily accessible with the AutoFill feature.
Everything stored in iCloud Keychain is secure—it's protected by industry-standard encryption. Your iCloud Keychain can't be set up on another Mac or iOS or iPadOS device unless you approve it.
A password manager is the best way to keep passwords safe. Some password managers store and automatically fill in login credentials on behalf of the user. They help make passwords safer and are convenient for users.
Beginning in iOS 16, you have two options to lock your notes. You can lock notes with your iPhone passcode. Or, you can create a unique password only for Notes. Both options keep your information secure with end-to-end encryption for iCloud accounts.
Much like browser-based password managers, iCloud Keychain is more vulnerable to security breaches than other options since it's designed with convenience in mind. This allows users, unauthorized or not, to quickly drill down to your logins.
If you use your device passcode, you can also use Face ID or Touch ID to access your locked notes. If you have multiple devices where you're signed in with the same Apple ID, you use each device's passcode (or login password for a Mac) to access your locked notes on that device.
You can share a note with other people so they can edit text, lists, images, drawings, and audio recordings. Anyone you share with can label, color, archive, or add reminders without changing the note for others.
You can invite people to view and edit a note.
As we brought up earlier, LastPass had a security breach in November 2022. Currently, 1Password has reported no security breaches for its password manager. That has made some users wary of trying LastPass. 1Password does have frequent auditing performed to test the security of the product.
So for most people, this isn't going to be a problem. There is a product called 'GrayKey' by GrayShift. This is a device that plugs into an iOS device and can crack the passcode. This takes a matter of hours (for 4-digit passcodes) , a few days (for 6-digit codes) or longer for more complicated passcodes.
If you exclusively use Apple products and do not work in an environment where you may need to share passwords, then keep using Keychain. It's secure and convenient. If you use a variety of devices and browsers, you're going to want a dedicated password manager.
You might want to do this if, for example, you've forgotten the password or you're transferring a computer to someone else. Important: If you delete a keychain's References and Files, all the information in the keychain is deleted. However, if you know the keychain's password, you can recover the information.
If your device is hacked or stolen, storing passwords on your device gives hackers easy access to all of your accounts and personal information. Although it might be tempting and convenient, you should never save passwords on your phone, tablet, or computer.
Your iPhone, iPad, and Mac all have a free password manager made by Apple called iCloud Keychain.
Password Manager Vault and Secret Folder is the only app that lets you safeguard and store your data with complete privacy across all of your iOS devices. Login information is protected by AES 256-bit encryption. That means only you can access them, not your neighbor, not us, not even your best friend!
Secure notes are end-to-end encrypted using a user-provided passphrase that is required to view the notes on iOS, iPadOS, macOS devices, and the iCloud website. Each iCloud account (including “On my” device accounts) can have a separate passphrase.