In a world increasingly aware of digital privacy, the FBI recently issued a warning advising against the use of standard SMS and MMS messages between iPhones and Android devices. The bureau highlighted concerns over the lack of encryption, portraying its recommendations as a step toward better security for consumers. However, a closer look suggests this guidance might have dual purposes: protecting users from cyberattacks while potentially enabling easier access to text message data for law enforcement.
Continues after this brief message…
Did you know? Paid supporters get a reduced ad experience!
We know you value local news and entertainment that is free, open, and independent. Producing high-quality, paywall-free content isn't free. It takes time, effort, and resources to keep you informed and entertained. Unlike corporate media, we don’t have deep-pocketed investors or big advertisers funding our work—we rely on you, our readers and listeners, to keep Radio Free Hub City running. We're literally running on a shoe-string budget, but keep working hard to provide as much news and entertainment as we can.
If just 5% of local area residents became paid supporters at only $5 per month, we could meet our fundraising goals and continue expanding our news coverage depth while continuing to provide free access for everyone. So, if you'd like to help us in our continuing quest to improve our coverage, please consider becoming a paying supporter.
Will you be one of the 5%?
Thank you for supporting Radio Free Hub City!
The Mechanics of Messaging: iMessage, RCS, and SMS/MMS
To understand the implications of the FBI’s warning, it’s essential to unpack the technologies in question.
iMessage
Apple’s iMessage is a proprietary messaging platform exclusive to Apple devices. Messages sent between Apple devices are encrypted end-to-end, meaning that only the sender and the recipient can read the content. Apple does not have access to the encryption keys, ensuring a high level of privacy. However, if users enable iCloud backups, these messages are stored in Apple’s servers in an unencrypted format, making them accessible to law enforcement through a warrant.
RCS (Rich Communication Services)
RCS is an evolution of SMS/MMS designed for modern messaging on Android devices. Offered via carriers or Google’s infrastructure, RCS includes features like typing indicators, read receipts, and high-resolution media sharing. While Google’s implementation of RCS supports end-to-end encryption for one-on-one chats (when both users have enabled it), group chats and unencrypted backups remain vulnerable.
SMS/MMS
Traditional SMS and MMS, still used for cross-platform communication between iPhones and Android devices, lack encryption entirely. Messages are transmitted in plain text, making them susceptible to interception. While carriers don’t typically retain the content of messages once delivered, metadata such as timestamps, sender, and recipient information is often stored and accessible through legal subpoenas.
Article continues after these messages…
We didn't pick our name by accident. While other outlets are proud to be government 'Partners,' we are proud to be exactly what our namesake requires: Free from government influence, and free from government censorship. We don't lock our news behind a paywall, will you help us keep it that way? If you're tired of news sweetened with confirmation bias that never questions the 'official story', consider becoming a monthly supporter. Just $5/month helps fund our local reporting, live election night coverage, and more.
—
Data Retention Policies: A Window for Law Enforcement
One of the central issues in this debate is data retention—what providers store and for how long.
Apple: For iMessages, Apple retains metadata such as timestamps and IP addresses, which it can provide under subpoena. While message content is encrypted during transmission, iCloud backups (if enabled) store messages unencrypted. This backup loophole is a common entry point for law enforcement.
Google and RCS Providers: Google’s RCS implementation encrypts one-on-one messages end-to-end, meaning Google cannot access the content. However, unencrypted group chats and metadata remain available. If users back up RCS messages to Google Drive, these backups are not encrypted, making them accessible via a legal request.
Cellular Providers: Traditional SMS/MMS messages are not stored by most carriers after delivery. However, metadata such as phone numbers and timestamps is routinely logged and accessible.
Messaging apps like WhatsApp and Signal introduce another layer. While these apps are end-to-end encrypted, metadata and unencrypted backups stored on third-party servers can still be accessed.
Sponsored Stories
—
The Privacy Paradox: Enhanced Security or Simplified Surveillance?
On the surface, the FBI’s advice to move away from unencrypted messaging seems logical, especially in light of threats like the recent “Salt Typhoon” cyberattack by Chinese state actors, which exploited insecure telecommunications systems. Yet, this recommendation coincidentally aligns with law enforcement’s growing difficulties in accessing SMS/MMS data directly from carriers.
With traditional SMS/MMS, carriers retain little beyond metadata, and interception often requires significant effort. In contrast, centralized messaging platforms consolidate communications under a single entity, be it Apple, Google, or another provider. This centralization introduces opportunities for law enforcement to request metadata or backup content directly from the platform, often bypassing the need for interception.
For example, WhatsApp provides real-time metadata about user interactions under certain legal requests, even though it cannot access encrypted content. Apple’s iCloud backups and Google Drive backups further underscore the risks of “security features” that unintentionally expand law enforcement’s access.
—
Who Benefits From the Shift?
The FBI’s recommendation may well be grounded in a legitimate desire to protect consumers from cyber threats, but its effect is unmistakable: encouraging the adoption of platforms where law enforcement access is more streamlined. Messaging apps like iMessage and RCS (especially via Google) create a traceable, centralized system, providing both robust security for users and a more accessible channel for legal investigations.
Meanwhile, this shift places users in a delicate position: choosing between insecure SMS/MMS and platforms where metadata and backups may expose them to surveillance. Even with end-to-end encryption, metadata can reveal a user’s contacts, communication habits, and geographic movements.
—
The FBI’s call to abandon insecure cross-platform SMS/MMS messaging may indeed bolster consumer security in the face of modern cyber threats. Yet, the broader implications suggest a dual motive. By moving users to centralized messaging systems, law enforcement gains a more efficient means of accessing data—encrypted or not. As messaging technologies evolve, users must remain vigilant, balancing convenience and privacy while questioning the true intent behind policy recommendations.
Whether driven by genuine concern or strategic interest, the FBI’s guidance highlights the increasing complexity of digital privacy in a connected world. It’s a reminder that securing communication is as much about the technology as it is about the policies governing its use.
Story by multiple RFHC contributors
Do you believe we got something wrong? Please read our publishing standards and corrections policy.
Get daily and breaking news for Washington County, MD area from Radio Free Hub City. Sign up with your email today!
[wtpsw_carousel]
Discover more from Radio Free Hub City
Subscribe to get the latest posts sent to your email.