Most people turn on mobile push notifications and then promptly forget about them. However, it turns out that if you’re up to no good, those notifications could get you thrown in prison. The Washington Post reports that the FBI has been using mobile push notification data to unmask people suspected of serious crimes, like pedophilia, terrorism, and murder.
The Post did a little digging into court records and found evidence of at least 130 search warrants filed by the feds for push notification data in cases spanning 14 states. In those cases, FBI officials asked tech companies like Google, Apple, and Facebook to fork over data related to a suspect’s mobile notifications, then used the data to implicate the suspect in criminal behavior linked to a particular app, even though many of those apps were supposedly anonymous communication platforms, like Wickr.
How exactly is this possible? Push notifications, which are provided by a mobile operating system provider, include embedded metadata that can be examined to understand the use of the mobile apps on a particular phone. Apps come laced with a quiet identifier, a “push token,” which is stored on the corporate servers of a company like Apple or another phone manufacturer after a user signs up to use a particular app. Those tokens can later be used to identify the person using the app, based on the information associated with the device on which the app was downloaded. Even turning off push notifications on your device doesn’t necessarily disable this feature, experts contend.
This issue first received mainstream attention as the result of Senator Ron Wyden (D-Oregon), who published a letter he had sent to the Justice Department about the controversial surveillance technique. Apple, which has famously bragged about the privacy benefits of its devices, acknowledged the issue shortly afterward. According to the Post story, cops have been using this kind of data in court cases for years. The first recorded case that the Post discovered was half a decade ago, way back in 2019.
If finding new ways to catch pedophiles and terrorists doesn’t seem like the worst thing in the world, the Post article highlights the voices of critics who fear that this kind of mobile data could be used to track people who have not committed serious crimes—like political activists or women seeking abortions in states where the procedure has been restricted.