A New Attack Lets Hackers Steal 2-Factor Authentication Codes From Android Phones

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, ...

The ‘Pixnapping’ Attack Can Steal Your 2FA Codes

Researchers have discovered a new type of attack that can steal sensitive information on Android devices, like 2FA codes, ...

Pixnapping attack can steal 2FA codes using onscreen pixels

Google has assigned the issue CVE-2025-48561 (CVSS 5.5) and shipped mitigations in the September 2025 Android Security Bulletin, warning that spammy blur requests can both indicate and enable pixel ...