Apple Fixes Security Bug Allowing Law Enforcement Access to Deleted Signal Messages Apple has addressed a critical security flaw that enabled law enforcement agencies to access content from deleted Signal messages, a development that has sparked significant concern among privacy advocates and users of the encrypted messaging app. The issue, which involved the unintended storage of push notifications containing snippets of encrypted messages, was revealed through a report by 404 Media, a media outlet that highlighted the vulnerability during a hearing where the FBI testified about its ability to extract Signal messages from a defendant’s iPhone even after the app was deleted. The case in question was notable for being the first instance where authorities charged individuals for alleged “Antifa” activities following President Trump’s designation of the term as a terrorist organization. The vulnerability stemmed from a “logging issue” that failed to redact data, allowing copies of deleted messages to remain in the device’s push notification database for up to a month. This meant that even after messages were marked for deletion and the Signal app was uninstalled, law enforcement could potentially retrieve the content through forensic analysis of the device’s notification logs. Apple confirmed the bug in a statement, acknowledging that the push notifications should never have been stored and that the issue was resolved with a software update. Affected users are advised to update their devices to prevent the retention of “notifications marked for deletion.” Signal, the encrypted messaging platform, expressed relief at Apple’s swift response, calling the fix a “very happy” outcome.#apple #fbi #signal #404_media #antifa
