Once the Guardia Civil obtained the iCloud email address, the documents show that it requested information from Apple, which in turn provided a full name, two home addresses and a linked Gmail account.
I have mixed feelings about this. This doesn’t sound to me like the actual iCloud data but rather it’s metadata for an account the police know already exists. It’s certainly not great, but it could be worse.
https://techcrunch.com/2024/05/08/encrypted-services-apple-proton-and-wire-helped-spanish-police-identify-activist/
Can’t protect someone from bad OPsec.
Important quote for readers:
I have mixed feelings about this. This doesn’t sound to me like the actual iCloud data but rather it’s metadata for an account the police know already exists. It’s certainly not great, but it could be worse.