Apple patches bug that let FBI access deleted Signal messages
Apple patches bug that let FBI access deleted Signal messages
Apple has patched a security vulnerability that allowed the FBI to view deleted content from the encrypted messaging app Signal.Mikael Thalen (Straight Arrow News)
like this
Mark with a Z
in reply to Chris Remington • • •How does Apple's bug affect Signal messages? Is it just notifications?
Yeah it was.
like this
dhut5uyr3uugdeuiicse7kag likes this.
Chris Remington
in reply to Mark with a Z • • •Ooops
in reply to Chris Remington • • •Chris Remington
in reply to Ooops • • •Mark with a Z
in reply to Chris Remington • • •LibertyLizard
in reply to Mark with a Z • • •Ooops
in reply to LibertyLizard • • •A bug in Apple's notification system allowed extraction even when the message that triggered the notification was deleted.
This means access you any text you got. This means a list of any incoming calls. This means all your appointments that your phone reminded you of.
And instead we get a story about deleted Signal messages, prominently featuring Signal in the thumbnail and picture while failing to mention any of the other implications of that Apple-specific bug.
How is that accurate or even just sane reporting? Either it's an incredibly stupid take or there is an actual agenda focusing on Signal here. And when I see several of those (including stuff like people falling for phishing attempts and giving away access to their devices being reported as "Hackers getting access to Signal account") within just a few days I tend to assume the latter.
HMWYSPlease
in reply to Ooops • • •ZeroCool
in reply to Ooops • • •Ooops
in reply to Chris Remington • • •There was an Apple bug that allowed restoring information from their notification system. So Apple leaked info from Apps that used the notifications. From any App. Why is this talking about Signal? Why not a "Apple patches bug that allowed access to E2E encrypted WhatsApp messages"? Why not "bug that allowed access to your call history even after deletion"? Because those are all equally true. What's reason we are talking about Signal here.
And to add more context: the exact same was true for the other "Signal bug/hack/exploit" articles I mentioned. No actual connection to Signal at all, yet that was always the story told.
Apple fucks up and leaks all private information that passes through their notification system? "Bug that allowed to read Signal messages!" Idiot fell for phishing attempt and logged into a fake website giving someone else full access to their device? "Hacker managed to access XY's Signal account!". I left my door standing wide open when leaving to work and got robbed? "Locked doors don't actually protect your stuff!"
Those 3 statements are equa
... Show more...There was an Apple bug that allowed restoring information from their notification system. So Apple leaked info from Apps that used the notifications. From any App. Why is this talking about Signal? Why not a "Apple patches bug that allowed access to E2E encrypted WhatsApp messages"? Why not "bug that allowed access to your call history even after deletion"? Because those are all equally true. What's reason we are talking about Signal here.
And to add more context: the exact same was true for the other "Signal bug/hack/exploit" articles I mentioned. No actual connection to Signal at all, yet that was always the story told.
Apple fucks up and leaks all private information that passes through their notification system? "Bug that allowed to read Signal messages!" Idiot fell for phishing attempt and logged into a fake website giving someone else full access to their device? "Hacker managed to access XY's Signal account!". I left my door standing wide open when leaving to work and got robbed? "Locked doors don't actually protect your stuff!"
Those 3 statements are equally stupid. I am pretty sure the third one would trigger you to question either my sanity or if I think you are an idiot and why I would try to convince you that doors are useless. Why don't the other two?
teawrecks
in reply to Ooops • • •Kazumara
in reply to teawrecks • • •Kazumara
in reply to Ooops • • •That's very easy to answer. Signal comes up here because that's what actually happened in the case that brought the bug to light.
The FBI recovered message content from the Apple notification service that happened to come from Signal, and used it to secure a conviction against people who used Signal in planning their anti-ICE activities
Unlucky for Signal from a PR perspective but that's just what actually happened, so people write about that rather than hypotheticals where other encrypted messaging apps would have suffered the same issue.
henfredemars
in reply to Ooops • • •Ooops
in reply to henfredemars • • •Fifrok
in reply to Ooops • • •drathir
in reply to Chris Remington • • •