I have the offical Yahoo mail app and the Dropbox app installed on my Note 2, and had signed in to both. Then I changed passwords for both on desktop websites, thinking that I would have to re-sign in on my Note 2. To my surprise, I didn't have to. I could continue using those apps as if nothing had happened. In fact, I couldn't find anywhere in those apps that would let me enter a password. So my two questions are (1) how did those apps know my new passwords, and (2) isn't it kind of unsafe to have my Note 2 automatically obtaining new passwords, especially if my Note 2 were stolen?