Apple fixes bug that cops used to extract deleted chat messages from iPhones

Posted by cdrnsf 20 hours ago

Apple fixes bug that cops used to extract deleted chat messages from iPhones(techcrunch.com)

706 points | 172 commentspage 3

maerF0x0 19 hours ago|

Cat and Mouse, good. This is the adversarial setup that results in a better outcome for all.

unethical_ban 19 hours ago||

I wonder if the same flaw exists on Android/GrapheneOS.

benjx88 15 hours ago||

Anthropic Mythos at work! iOS is so good and well built that only 1 bug was found and those patch. "It's either all a joke ... or none of it is." -Bruce Banner

mplewis 14 hours ago|

What did Anthropic have to do with any of this?

JumpCrisscross 9 hours ago|||

> What did Anthropic have to do with any of this?

To be fair, the day after Glasswing was announced [1] iOS 26.4.1 was released [2]. Three weeks later, we have 26.4.2. When I saw the update prompt, my first thought was security fixes from Mythos. (In reality, the data do not show that Apple is releasing iOS 26 versions more frequently after Project Glasswing was announced than it was before. If we see another release in two weeks, I think we can conclude at least a statistically-meaningful signal.)

[1] https://www.anthropic.com/project/glasswing

[2] https://en.wikipedia.org/wiki/IOS_26#Version_history

benjx88 13 hours ago|||

It was an attempt at humor and banter, should've flag that or something.

immanuwell 8 hours ago||

Finally!

joshrw 4 hours ago||

“Bug”. More like a “bugdoor”

cubefox 18 hours ago||

It is completely unclear from this article whether this means Apple does no longer cache dismissed notifications somewhere.

ghstinda 17 hours ago||

I like apple, but would never trust them with privacy. NYPD uses ISMI catchers and other tech. This is a nothing burger or nothing donut.

ratg13 10 hours ago||

I think people are too focused on the device part of it.

Whatever Apple did to block access to the cache does not negate the fact that these notification messages are still being sent in plaintext through Apple and Google’s servers.

It’s hard to imagine that Apple/Google couldn’t just be compelled to hand this information over if ordered by a court and wouldn’t need your phone at all.

And this loophole possibly only hinges on the fact that most law enforcement maybe never realized this was something they could ask for.

Or perhaps this is happening and the public just doesn’t know it yet.

tcfhgj 18 hours ago||

bug or backdoor?

6thbit 18 hours ago|

"Never attribute to malice that which is adequately explained by stupidity."

More comments...