FBI Extracted Deleted Signal Messages Saved in iPhone Notification Database

This is well known in the op-sec communities. iOS and Android notifications route through their servers and can be stored indefinitely (ie especially under a court order) You need to disable the content previews if you want to be secure. But even the notification metadata can be quite valuable to law enforcement (who is messaging you, what time of day, etc.)

Also standard requirement on govt mobile devices to disable notifications. Mattermost provides this option at the server level to block notifications entirely for ios/android devices.

> Signal had been removed, but incoming notifications were preserved in internal memory

Why are app notifications not part of app data that gets deleted on uninstall???

I think that https://molly.im/ is better than Signal Android.

Sounds like Apple needs to start flushing that database regularly, at least by option. Perhaps as part of Lockdown Mode?

https://archive.ph/bSQhD

Perhaps Signal should force the notification settings to "don't show the content" when disappearing messages are enabled in a particular chat?

Can someone explain why notification databases are stored for a long period of time? The article is behind a paywall.