iOS 26.4.2 Patches Flaw That Let FBI Extract Deleted Signal Messages
MacRumors • • technology
Key Points:
- Apple released updates for iOS 26.4.2, iPadOS 26.4.2, iOS 18.7.8, and iPadOS 18.7.8 to fix a security vulnerability involving notification services that allowed message previews to be retained on devices even after app deletion.
- The vulnerability was exploited by the FBI to extract Signal message previews from an iPhone, despite the Signal app being deleted and messages set to disappear.
- The issue stemmed from the iPhone storing message content in the internal notification database when message previews were enabled on the Lock Screen, allowing law enforcement access during a legal case.
- Apple addressed the flaw by improving data redaction and fixing the logging issue to prevent unauthorized retention of notification content.
- Users running affected versions of iOS and iPadOS are advised to update immediately to protect their data from similar vulnerabilities.
