Apple has released important security updates to fix a flaw in its iOS and iPadOS systems that could allow previously deleted notifications, including messages from Signal, to remain stored on devices.
Vulnerability Details
The issue, identified as CVE-2026-28950, was linked to how notification data was handled internally. Instead of being fully removed, certain notifications marked for deletion were unintentionally retained in the system.
Apple addressed the problem by improving how sensitive data is redacted within its logging mechanisms, ensuring that deleted notifications are no longer stored.
Affected Devices and Updates
The flaw impacted a wide range of Apple devices, including modern iPhones and iPads. The fix has been rolled out in the following updates:
- iOS 26.4.2 and iPadOS 26.4.2 for newer devices
- iOS 18.7.8 and iPadOS 18.7.8 for older supported models
Users are strongly advised to install these updates immediately to ensure their devices are protected.
Connection to Forensic Data Recovery
The update follows reports that Federal Bureau of Investigation successfully retrieved message data from a suspect’s iPhone during an investigation. The data included Signal messages that were believed to be deleted.
The recovery was possible because fragments of notification content had been stored in the device’s push notification database, even after the messaging app was removed.
Privacy Concerns and Security Implications
While it remains unclear why notification data was stored in this way, the issue highlights a broader concern about how sensitive information may persist on devices.
Security experts emphasize that physical access to a device can significantly increase the risk of data extraction, especially when combined with forensic tools.
The Electronic Frontier Foundation (EFF) noted that users often have limited visibility into what metadata notifications may contain or whether that data is encrypted.
User Protection Measures
Although the vulnerability has been fixed, users can take additional steps to enhance privacy:
- Limit notification content visibility in app settings
- Avoid displaying message previews on the lock screen
- Disable unnecessary notifications for sensitive apps
Within Signal, users can adjust notification settings to show minimal or no content, reducing exposure of private messages.
Official Response
Signal confirmed that no additional action is required beyond installing the latest iOS update. Once patched, any previously stored notification data is automatically removed, and future notifications will not be retained after deletion.
The company also acknowledged Apple’s swift response in resolving the issue, highlighting the importance of collaboration in maintaining secure communication systems.
Found this article interesting? Follow us on X (Twitter) , Facebook, Blue sky and LinkedIn to read more exclusive content we post.
