Pixnapping Attack: Android Devices Vulnerable to Pixel-Stealing

Cyber Security News by CyberSum.net

Published on October 15, 2025 at 06:00 AM

6 sources

Pixnapping, a new side-channel attack, targets Android devices to covertly extract sensitive screen data, including 2FA codes, in under 30 seconds. This exploit leverages Android’s core APIs and a GPU vulnerability, affecting nearly all modern Android phones without special permissions. Demonstrated on various models, Pixnapping bypasses traditional protections to snoop on web content and native apps, raising alarms for users relying on apps like Signal and Gmail. Researchers recommend updating devices promptly and scrutinizing app installations to mitigate risks.

Also Read

Cisco SNMP Vulnerability Exploited in Operation Zero Disco

Cybersecurity researchers at Trend Micro have uncovered an active attack campaign called Operation Zero Disco, which exploits a critical vulnerability in Cisco’s SNMP implementation. The vulnerability, tracked as CVE-2025-20352, allows attackers to execute remote code and deploy sophisticated Linux rootkits on vulnerable network devices. The campaign primarily targets older Cisco switch models, enabling persistent unauthorized access and evasion of detection. Attackers use spoofed IP addresses and MAC email addresses to obscure their activities, and the rootkit installs hooks into the IOSd memory space, creating fileless backdoor components that disappear after system reboots but remain active during normal operation.

By Cyber Security News by CyberSum.netOctober 16, 2025 at 03:00 PM