Researchers have identified a new attack method that can allow malicious applications to steal sensitive data from Android ...

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, ...

Google has only partially mitigated the attack, which involves using a malicious Android app to secretly discern the two-factor codes generated by authenticator apps.

Researchers have discovered a new type of attack that can steal sensitive information on Android devices, like 2FA codes, ...

Researchers have detailed the Pixnapping attack on Android, which has inferred on-screen data and exposed seed phrases and ...

It allows a malicious Android application to access and leak information displayed in other Android apps or on websites. It ...

Google is aware of a vulnerability that’s able to steal data from apps that are generally considered secure like ...

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, ...

Pixnapping side-channel can steal 2FA codes pixel-by-pixel on Android 13–16; CVE-2025-48561 patched Sept 2025 but workaround ...

Researchers say that in the case of Google Authenticator, the Pixnapping vulnerability allows attackers to steal critical 2FA ...

Pixnapping is a newly disclosed class of side-channel attacks that targets Android smartphones. The attack, conceived by researchers, would allow a malicious app to leak secret ...

Nasty and it still works Security researchers have resurrected a 12-year-old data‑stealing browser attack and adapted it to ...