FBI Read Signal Messages Even After the App Was Deleted

Signal is widely regarded as one of the most secure messaging apps available, mainly because it uses end-to-end encryption to keep chats private. But a recent FBI case shows that deleting the app may not erase every trace of a conversation.

Investigators were reportedly able to recover incoming Signal message content from an iPhone even after the app had been removed from the device.

How the messages were found

The important point is that Signal’s encryption was not broken. Instead, the messages were reportedly recovered from Apple’s internal notification storage. In practice, that means message previews shown on an iPhone’s lock screen may be saved elsewhere on the device, outside the app itself.

According to reports on the case, the recovered material came from incoming notifications rather than from Signal chat logs. Only incoming messages were reportedly captured, not outgoing ones.

That detail matters because it suggests the evidence came from notification data stored by the phone, rather than from a full recovery of everything inside the app.

The case also drew attention because some of the recovered messages had reportedly been set to disappear in Signal. Many users assume disappearing messages and app deletion are enough to remove sensitive content.

This example suggests that if message previews were allowed to appear on the lock screen, some information may still remain in the device’s memory.

Why this matters beyond Signal

For everyday users, the lesson is broader than one app. What appears on your lock screen can create a separate privacy risk, even when the app you use is designed with security in mind.

If notification previews are enabled, parts of private conversations may be stored by the operating system in ways most users never think about.

This is not limited to Signal. Other apps that display message previews, reminders, shopping updates, or account alerts on the lock screen could also leave behind traces in notification data.

That means private information might exist in more places than users expect, especially on a phone that receives a large volume of notifications each day.

Reports on the case also noted that iPhones store and cache large amounts of data locally so information is available when needed.

The exact method used by investigators has not been fully explained in public, but it appears the key evidence came from a forensic extraction of the device rather than from access to Signal’s encrypted system.

What iPhone users can do

The most useful takeaway is practical. Signal already gives users the option to limit what appears in notifications.

In the app’s settings, users can choose to show full details, less information, or no identifying details at all. Setting notifications to No Name or Content can help reduce the risk of sensitive message details being exposed through lock screen previews.

For consumers, this is a reminder that privacy depends on more than choosing a secure app. It also depends on how the phone itself handles alerts and previews.

Strong encryption still matters, but this case shows that convenience features, especially lock screen notifications, can create an unexpected gap in personal privacy.