· 1 min read

Breaking: Apple Fixes iOS Flaw That Let FBI Recover Deleted Signal Messages

Apple patches critical iOS flaw (CVE-2026-28950) that allowed retention of deleted notifications, enabling recovery of deleted Signal messages by law enforcement.

Breaking News — April 23, 2026

Apple has rolled out out-of-band security updates for iOS and iPadOS to fix a Notification Services flaw that allowed notifications marked for deletion to remain stored on devices.

Vulnerability Details

  • CVE: CVE-2026-28950
  • Type: Logging issue — notifications marked for deletion could be unexpectedly retained
  • Fix: Improved data redaction

Affected Devices

  • iPhone 11 and later
  • iPad Pro 12.9-inch 3rd generation and later
  • iPad Pro 11-inch 1st generation and later
  • iPad Air 3rd generation and later
  • iPad 8th generation and later
  • iPad mini 5th generation and later

The Signal Connection

The flaw allowed recovery of deleted Signal messages because notification content was retained even after the messages were deleted from the app. This has significant implications for encrypted messaging privacy.

Apple received kudos from the security community for the rapid fix.

Source: The Hacker News / BleepingComputer / Apple

More from the Blog

Breaking: UK Warns of Chinese Hackers Using Hijacked Consumer Device Botnets

NCSC-UK warns China-linked hackers are using botnets of hijacked home routers and smart devices to hide malicious activity and evade detection.

Read more

Breaking: New GopherWhisper APT Abuses Outlook, Slack, Discord for Espionage

New state-backed APT GopherWhisper discovered using Go-based toolkit and legitimate platforms (Outlook, Slack, Discord) to target government entities.

Read more