Apple has just released a new software update for iPhone and iPad to fix a serious security vulnerability that once allowed extracting deleted or automatically disappearing messages from devices.
According to the official security notification, the problem stems from the notification processing mechanism of the operating system. Specifically, the content of the message displayed in the notification is still stored in the device's cache for up to one month.
This leads to a situation where even if the user has deleted the message or used the self-destruct feature, the data may still exist unintentionally.
This vulnerability was noted after independent news site 404 Media revealed that the FBI was able to extract deleted messages from the Signal app (a free messaging app, focused on security and privacy) on iPhone.
The reason is that the content of the message once appeared in the notification and was saved in the system's database, even after being deleted from the application.
After the information was announced, Ms. Meredith Whittaker - President of Signal publicly called on Apple to handle the issue.
Ms. Meredith Whittaker emphasized that notifications related to deleted messages should not be stored in any database of the operating system, as this weakens the security features that users rely on.
To date, Apple has not specifically explained why this storage mechanism exists, but the release of the patch shows that the company has identified this as a bug that needs to be fixed.
The update is deployed not only for new devices but also for devices running older iOS 18.
The incident has raised concerns in the privacy protection community. Many experts warn that even features such as self-destructing messages, which are widely used on Signal or WhatsApp, can be disabled if the operating system stores data unintentionally.
In the context of more and more users relying on encrypted messaging applications to protect personal information, this incident is a reminder that security depends not only on the application, but also on how the operating system processes background data.
Apple's rapid release of the patch shows that the company is making efforts to strengthen user trust, while also posing higher requirements for transparency and data control in the future.
