{"id":12337,"date":"2026-04-23T10:03:52","date_gmt":"2026-04-23T10:03:52","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/04\/23\/apple-fixes-notification-privacy-flaw-that-allowed-fbi-to-access-deleted-signal-messages\/"},"modified":"2026-04-23T10:03:52","modified_gmt":"2026-04-23T10:03:52","slug":"apple-fixes-notification-privacy-flaw-that-allowed-fbi-to-access-deleted-signal-messages","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/04\/23\/apple-fixes-notification-privacy-flaw-that-allowed-fbi-to-access-deleted-signal-messages\/","title":{"rendered":"Apple Fixes Notification Privacy Flaw That Allowed FBI to Access Deleted Signal Messages"},"content":{"rendered":"<p>    Apple Fixes Notification Privacy Flaw That Allowed FBI to Access Deleted Signal Messages<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>Apple released iOS 26.4.2 and iPadOS 26.4.2 on April 22, 2026, to patch a critical notification privacy vulnerability that allowed law enforcement to extract Signal message content from iPhones \u2014 even after the app had been deleted.<\/p>\n<p>The flaw, tracked as CVE-2026-28950, stems from a logging issue in Apple\u2019s notification services. Notifications marked for deletion were unexpectedly retained on the device, potentially leaving sensitive message previews to persist long after users believed they had been wiped. <a href=\"https:\/\/support.apple.com\/en-us\/127002\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Apple addressed the root cause<\/a> through improved data redaction in its logging framework.<\/p>\n<p>The vulnerability gained public attention after investigative outlet 404 Media reported that the FBI had successfully extracted Signal message notification content from a suspect\u2019s iPhone during a criminal investigation, despite Signal being uninstalled from the device. The retained notification previews provided enough readable content to be forensically valuable to investigators.<\/p>\n<h2 class=\"wp-block-heading\" id=\"signal-praises-apples-swift-response\"><strong>Signal Praises Apple\u2019s Swift Response<\/strong><\/h2>\n<p>Signal acknowledged the patch publicly, praising Apple for acting quickly after the disclosure. In a post on X, the encrypted messaging platform confirmed that the update not only prevents future notifications from lingering for deleted apps but also automatically clears previously retained notification data on affected devices.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<div class=\"embed-twitter\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">We are very happy that today Apple issued a patch and a security advisory. This comes following <a href=\"https:\/\/twitter.com\/404mediaco?ref_src=twsrc%5Etfw\">@404mediaco<\/a> reporting that the FBI accessed Signal message notification content via iOS despite the app being deleted. <\/p>\n<p>Apple\u2019s advisory confirmed that the bugs that allowed this to\u2026<\/p>\n<p>\u2014 Signal (@signalapp) <a href=\"https:\/\/twitter.com\/signalapp\/status\/2047070518776356996?ref_src=twsrc%5Etfw\">April 22, 2026<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/div>\n<\/figure>\n<p>This is particularly significant given Signal\u2019s reputation as a gold-standard privacy tool. The fact that iOS\u2019s own notification infrastructure could inadvertently undermine Signal\u2019s <a href=\"https:\/\/cybersecuritynews.com\/end-to-end-encryption\/\" target=\"_blank\" rel=\"noreferrer noopener\">end-to-end encryption<\/a> at the OS level highlights the complexity of securing a full device privacy stack.<\/p>\n<p>The update applies to a broad range of Apple hardware:<\/p>\n<ul class=\"wp-block-list\">\n<li>iPhone 11 and later<\/li>\n<li>iPad Pro 12.9-inch (3rd generation and later), 11-inch (1st generation and later)<\/li>\n<li>iPad Air 3rd generation and later<\/li>\n<li>iPad 8th generation and later<\/li>\n<li>iPad mini 5th generation and later<\/li>\n<\/ul>\n<p>Users on older devices can apply the same fix via iOS 18.7.8 and iPadOS 26.4.2.<\/p>\n<p>Build 23E261, approximately 670\u2013770 MB, is available now. Navigate to Settings &gt; General &gt; Software Update to install the patch immediately.<\/p>\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 94%,rgb(169,184,195) 100%)\"><strong>Follow us on <a href=\"https:\/\/news.google.com\/publications\/CAAqMggKIixDQklTR3dnTWFoY0tGV041WW1WeWMyVmpkWEpwZEhsdVpYZHpMbU52YlNnQVAB?hl=en-IN&amp;gl=IN&amp;ceid=IN:en\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Google News<\/a>, <a href=\"https:\/\/www.linkedin.com\/company\/cybersecurity-news\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">LinkedIn<\/a>, and <a href=\"https:\/\/x.com\/cyber_press_org\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">X<\/a> for daily cybersecurity updates. <a href=\"https:\/\/cybersecuritynews.com\/contact-us\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Contact us<\/a> to feature your stories.<\/strong><\/p>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/apple-fixes-notification-privacy-flaw\/\">Apple Fixes Notification Privacy Flaw That Allowed FBI to Access Deleted Signal Messages<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Guru Baran<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/apple-fixes-notification-privacy-flaw\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Apple Fixes Notification Privacy Flaw That Allowed FBI to Access Deleted Signal Messages Apple released iOS 26.4.2 and iPadOS 26.4.2 on April 22, 2026, to patch a critical notification privacy vulnerability that allowed law enforcement to extract Signal message content from iPhones \u2014 even after the app had been deleted. The flaw, tracked as CVE-2026-28950, [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63,648],"tags":[130],"class_list":["post-12337","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","category-vulnerability-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/12337"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=12337"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/12337\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=12337"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=12337"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=12337"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}