"Until recently, when an app gets deleted, every notification from that app is assumed to be gone with it. But on April 10, the FBI proved that assumption to be false by successfully extracting Signal messages from an iPhone notification center, even after the Signal app had been deleted."
"What many saw as a privacy lesson, Apple saw as a security issue that needed fixing. In its update notes, it tagged the bug as CVE-2026-28950."
"According to the company, 'notifications marked for deletion could be unexpectedly retained on the device.' Its fix? Fix the logging issue with improved message redaction."
Apple released iOS 26.4.2 to address a privacy issue that allowed the FBI to retrieve notifications from deleted apps. This update, which includes general security and stability fixes, specifically targets Notification Services. Previously, deleted app notifications could be retained on devices, as demonstrated by the FBI's extraction of Signal messages. Apple identified this as a security concern and implemented a fix to improve message redaction, ensuring that notifications marked for deletion are properly removed from the device.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]