A important vulnerability has been discovered within the Markup Device on Pixel telephones

Hadley Simmons/Android Authority


  • The vulnerability in Pixel’s Markup utility permits hackers to unmodify and uncrop screenshots.
  • Google mounted the problem with the March 2023 safety replace, however Pixel screenshots shared earlier than that stay weak.

A critical flaw discovered within the Markup device on Pixel telephones might permit hackers to un-edit and un-crop screenshots. recognized by the safety researcher Simon Aaronsthe flaw known as “Acropalypse” and has been assigned a CVE (Frequent Vulnerabilities and Exposures) identifier.

Let’s say you share a screenshot of your financial institution assertion with somebody and use Pixel’s Markup device to cover delicate data like your checking account quantity or steadiness, the vulnerability would permit anybody to revoke this confidential data, offered you ship them an unique screenshot file.

A lot of the messaging and social media apps compress and reprocess the shared photographs and on this case, hacking is just not attainable. For instance, Twitter is free from Acropalypse. Nevertheless, Discord solely began stripping screenshots of those particulars in January. Any premium Pixel screenshots that have been shared on the platform previous to being hacked.

Google launched the Markup device on Android 9 Pixel telephones in 2018. It means that you can crop, add textual content, draw, and spotlight screenshots. Nevertheless, the vulnerability might assist unhealthy actors take away this modification and achieve entry to the screenshot in its unique state.

Whereas Google mounted the problem with the March 2023 safety replace, screenshots you shared earlier than updating your Pixels can nonetheless be exploited with the most recent software program, and your hidden data might be partially recovered. Aaron created Technical presentation From the glitch, with which you’ll be able to see if modified screenshots might be unmodified.