[gnicholas]

Very cool, thanks. I notice it doesn’t mention anything about changing bank passwords or the like. Might that be necessary, depending on how long it’s been out of your control? That is, if someone swipes your phone and was able to peak at your password (as a recent WSJ series focused on), you would probably need to take more dramatic steps if you didn’t realize it was gone immediately. Should I be making a list of the apps on my phone that have sensitive information and can be accessed without FaceID?

I wish it were possible to designate an app to require FaceID or both my device password and my Apple ID password (or some other second authentication). Does this new updates fix this issue entirely? I feel like not because until I mark the phone stolen it doesn’t know to lock the holder of the phone out of my apps using just my device password.

[varenc]

The Apple article does tacitly mention:

> You might want to change your password for other accounts, too.

Personally I would trust iOS security enough to not be too worried. Especially if I can issue a remote wipe in a timely manner. As long as the phone isn't swiped out of my hand while unlocked, I'm doubtful the average thief will be able to get past the lock screen. (Though I'm also assuming the thief doesn't have my passcode)

[pc86]

If something like a phone is stolen it's probably safe just to change everything. The inconvenience of having to go through and change your important passwords manually (including your manager's master password of course) is relatively minor compared to your financial accounts getting breached.

[bertil]

> I wish it were possible to designate an app to require FaceID

Developers can require that. Several apps I use do.

[gnicholas]

Oh yeah, I wish that it were possible as a use preference, on a per-app basis.