Friday, November 22, 2024

A critical vulnerability has been found in the Markup Tool on Pixel phones

Date:

Hadley Simmons/Android Authority

TL; DR

  • The vulnerability in Pixel’s Markup utility allows hackers to unretouch and uncrop edited screenshots.
  • Google fixed the issue with the March 2023 security update, but Pixel screenshots shared before that remain vulnerable.

A serious flaw found in the Markup tool on Pixel phones could allow hackers to unretouch and uncrop edited screenshots. identified by the security researcher Simon Aaronsthe flaw is called “Acropalypse” and has been assigned a CVE (Common Vulnerabilities and Exposures) identifier.

Let’s say you share a screenshot of your bank statement with someone and use Pixel’s Markup tool to hide sensitive information like your bank account number or balance, the vulnerability would allow anyone to redact that confidential information, provided you send them an original screenshot file.

Security vulnerability in pixel screenshot encoding

Most of the messaging and social media apps compress and reprocess the shared images and in this case, hacking is not possible. For example, Twitter is free from Acropalypse. However, Discord only started stripping screenshots of these details in January. Any premium Pixel screenshots that were shared on the platform prior to being hacked.

Google released the Markup tool on Android 9 Pixel phones in 2018. It allows you to crop, add text, draw, and highlight screenshots. However, the vulnerability could help bad actors remove this modification and gain access to the screenshot in its original state.

POPULAR

RELATED ARTICLES

How Climate Change Affects Turtle Nesting Sites: What You Need to Know

Climate change is an ever-growing concern, and its effects...

Putin, a member of the International Criminal Court, is set to travel to Mongolia despite an arrest warrant against him

Despite an arrest warrant from the International Criminal Court,...

Japan Typhoon: Millions ordered to evacuate as one of strongest typhoons in decades hits Japan

What's the latest?Posted at 12:48 BST12:48 GMTImage source ReutersTyphoon...