Privacy on iPhones was thinner than advertised. A software bug in iOS left traces of Signal messages that users had deleted, allowing law‑enforcement agencies armed with forensic extraction tools to pull them from device backups and local storage, even though Signal’s own end‑to‑end encryption and disappearing‑message design were working as intended.

The awkward truth is that the weak link was Apple, not Signal. According to technical analyses by independent researchers and legal‑tech specialists, the operating system failed to promptly purge certain message artifacts from databases and caches on iPhones and iPads, which meant commercial tools used in police labs could parse those residual records and reconstruct parts of supposedly erased chats during device imaging and data carving.

Apple’s fix, delivered in a recent iOS and iPadOS update, tightens how the file system handles secure deletion and how backup snapshots mirror app data. That change narrows the attack surface for forensic suites that rely on low‑level access to SQLite stores and unallocated space, yet it also sharpens an old fight: whether platform vendors should harden defenses even when the beneficiaries are suspects, or leave gaps that investigators can quietly leverage.