Google has only partially mitigated the attack, which involves using a malicious Android app to secretly discern the two-factor codes generated by authenticator apps.
Researchers have discovered a new type of attack that can steal sensitive information on Android devices, like 2FA codes, ...
Pixnapping was performed on five devices running Android versions 13 to 16: the Google Pixel 6, Google Pixel 7, Google Pixel 8, Google Pixel 9, and Samsung Galaxy S25. However, it is possible that ...
Researchers have identified a new attack method that can allow malicious applications to steal sensitive data from Android ...
Researchers have detailed the Pixnapping attack on Android, which has inferred on-screen data and exposed seed phrases and ...
Researchers say that in the case of Google Authenticator, the Pixnapping vulnerability allows attackers to steal critical 2FA ...
Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, ...
New Android exploit “Pixnapping” can secretly read on-screen data like 2FA codes and messages using pixel timing — even ...
A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by ...
It can nick whatever’s visible on your screen, think two-factor codes, chat threads, or location timelines, in under 30 ...
Android users are facing a serious new threat despite Google's efforts to patch the vulnerability, according to a research ...
Pixnapping side-channel can steal 2FA codes pixel-by-pixel on Android 13–16; CVE-2025-48561 patched Sept 2025 but workaround exists.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback