A newly identified threat called "Pixnapping" targets Android devices, capturing sensitive information through repeated background screenshots.
Vulnerability Details and Impact
Pixnapping is a pixel-stealing malware that extracts information from Android device screens. Operating silently, the malware reads screen pixels, reconstructing private data like messages and passwords.
This vulnerability, CVE-2025-48561, has significant implications for app security, particularly affecting Google Authenticator.
Device-Specific Differences
The effectiveness of Pixnapping varies across different Android models. For instance, the Pixel 9 sees data extraction in 25.3 seconds, while the Pixel 6 is more vulnerable, with extraction occurring in 14.3 seconds.
Google's Response and User Recommendations
Google addressed the flaw in a partial fix within the September security update, with a comprehensive solution planned. Users should maintain updated software, avoid unknown apps, review permissions, and opt for hardware-based two-factor authentication where possible.
