Pixnapping attack can steal 2FA codes from Android devices using onscreen pixels

Google has assigned the issue CVE-2025-48561 (CVSS 5.5) and shipped mitigations in the September 2025 Android Security Bulletin, warning that spammy blur requests can both indicate and enable pixel ...
Mobile ID World

New ‘Pixnapping’ Vulnerability Enables Data Theft from Android Apps Without Permissions

A newly discovered side-channel vulnerability called Pixnapping affects Android devices, enabling unauthorized access to sensitive information displayed by applications without requiring special ...

Pixnapping attack lets malicious apps steal sensitive data from Android devices

Pixnapping is a newly disclosed class of side-channel attacks that targets Android smartphones. The attack, conceived by researchers, would allow a malicious app to leak secret ...

New 'Pixnapping' attack lets hackers steal Android chats, 2FA codes in seconds

Cybersecurity researchers have discovered a new type of attack that affects Android devices, and they say it lets hackers get ...

New Android Pixnapping attack steals MFA codes pixel-by-pixel

A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by stealing pixels displayed by applications or websites, and reconstructing ...

Android Pixnapping Flaw Affecting Billions Of Devices Can Steal Your Data & 2FA Codes

Android users beware—a new form of Android malware dubbed Pixnapping has been revealed to the public, and in theory, all ...
SecurityWeek

Pixnapping Attack Steals Data From Google, Samsung Android Phones

Researchers have identified a new attack method that can allow malicious applications to steal sensitive data from Android ...
Android Authority

Android 16 QPR1’s source code is nowhere to be found, but Google swears it’s coming

Google has delayed releasing the source code for Android 16 QPR1, worrying custom ROM developers who rely on timely AOSP (Android Open Source Project) updates. While Google typically publishes source ...
talkandroid.com

Here’s how to transfer your Android photos to a PC in seconds

Editorial Note: Talk Android may contain affiliate links on some articles. If you make a purchase through these links, we will earn a commission at no extra cost to you. Learn more. If you're like ...
The New York Times

How Elon Musk Is Remaking Grok in His Image

Mr. Musk said he wanted xAI’s chatbot to be “politically neutral.” His actions say otherwise. By Stuart A. Thompson Teresa Mondría Terol Kate Conger and Dylan Freedman Reporters queried Grok and other ...
Ars Technica

Google will block sideloading of unverified Android apps starting next year

Android's open nature set it apart from the iPhone as the era of touchscreen smartphones began nearly two decades ago. Little by little, Google has traded some of that openness for security, and its ...
Bleeping Computer

ERMAC Android malware source code leak exposes banking trojan infrastructure

The source code for version 3 of the ERMAC Android banking trojan has been leaked online, exposing the internals of the malware-as-a-service platform and the operator’s infrastructure. The code base ...