Apple unveiled a hidden powerhouse during WWDC 26: a one‑tap, agentic AI that rewrites compromised passwords inside the native Passwords app. The feature, now in iOS 27 beta, lets the phone navigate sites, generate new credentials, and sync them to iCloud Keychain——while staying on‑device. It promises a smoother, safer login flow for everyday users without manual steps.

Unlike cloud‑based assistants, the agent runs entirely on the device, using Apple’s foundation models and the Secure Enclave to protect data. Before acting, it requests temporary access to one‑time verification codes in Messages or Mail if two‑factor authentication is active. The permission window scales with the number of credentials that need updating in the process.

Enterprise users face challenges: a personal device with company logins could trigger the AI to alter work credentials, potentially causing lockouts and support tickets. No MDM toggle exists yet, and heavy‑regulation sectors may balk at an untracked, automated credential change. Organizations that block iCloud Keychain syncing might inadvertently disable the feature for security compliance purposes.

While the Siri updates drew headlines, this AI‑driven password fixer showcases Apple’s commitment to secure, frictionless onboarding. By handling credential changes locally and automatically, it tightens the ecosystem lock‑in and boosts user confidence. The feature’s limited rollout will test its real‑world reliability before a broader release to maintain security integrity.