#2fa-compromise
#2fa-compromise

[ follow ]

New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without Permissions

Pixnapping is a pixel-stealing Android side-channel attack that can extract 2FA codes, Google Maps timelines, and other sensitive data without special app permissions.

fromArs Technica

2 weeks ago

No fix yet for attack that lets hackers pluck 2FA codes from Android phones

The new attack, named Pixnapping by the team of academic researchers who devised it, requires a victim to first install a malicious app on an Android phone or tablet. The app, which requires no system permissions, can then effectively read data that any other installed app displays on the screen. Pixnapping has been demonstrated on Google Pixel phones and the Samsung Galaxy S25 phone and likely could be modified to work on other models with additional work.

Information security

[ Load more ]

#2fa-compromise#2fa-compromise

New Pixnapping Android Flaw Lets Rogue Apps Steal 2FA Codes Without Permissions

No fix yet for attack that lets hackers pluck 2FA codes from Android phones

#2fa-compromise
#2fa-compromise