Full Report
A new side-channel attack called Pixnapping enables a malicious Android app with no permissions to extract sensitive data by stealing pixels displayed by applications or websites, and reconstructing them to derive the content. [...]
Analysis Summary
# Vulnerability: Android Pixnapping Side-Channel Attack Steals Screen Content Pixel-by-Pixel
## CVE Details
- CVE ID: CVE-2025-48561
- CVSS Score: Not explicitly provided, but described as a severe side-channel attack against fully patched modern devices. *Note: The article mentions this CVE relates to an issue Google attempted to fix in the September Android update, which was then bypassed.*
- CWE: Not specified, but relates to improper window management/data leakage via graphical composition (SurfaceFlinger).
## Affected Systems
- Products: Android Devices (Google Pixel 6, 7, 8, 9, Samsung Galaxy S25 mentioned)
- Versions: Android versions 13 through 16 (and likely older versions are also vulnerable due to underlying mechanisms).
- Configurations: Applicable to devices where the malicious app can successfully launch target applications/webpages via Android intents, allowing their content to be processed by SurfaceFlinger.
## Vulnerability Description
The "Pixnapping" attack is a side-channel technique that allows a malicious Android application, even without special permissions, to reconstruct visual content (pixels) displayed by other applications or websites running concurrently on the screen.
The attack flow relies on:
1. **Intent Abuse:** Launching the target application/webpage via Android intents.
2. **SurfaceFlinger Overlap:** The target window is submitted to the system’s composition process (SurfaceFlinger).
3. **Masking and Isolation:** The attacker uses a foreground "masking activity" that is opaque white everywhere except for a single transparent pixel at a location chosen by the attacker. This isolates the pixel content from the target application.
4. **Pixel Retrieval:** The attacker induces a stretching effect in SurfaceFlinger's blur implementation to enlarge the isolated 1x1 sub-region.
5. **Exfiltration:** The recovered pixel color is analyzed (e.g., white vs. non-white, or shades thereof) to decipher characters, often leveraging the **GPU.zip side-channel attack** to leak the visual information. This technique can extract 2FA codes in under 30 seconds.
## Exploitation
- Status: Research demonstration only. Current verifications found no malicious apps on Google Play leveraging this exact vulnerability.
- Complexity: Low (to initiate the attack via intents), but utilizing the underlying GPU side-channel (GPU.zip) for exfiltration is technically complex.
- Attack Vector: Network (assuming the initial malicious app is installed) via manipulation of system processes on the local device.
## Impact
- Confidentiality: High (Can steal chat messages, emails, and critical 2FA codes).
- Integrity: Medium (Can be used to obtain credentials for account takeover).
- Availability: Low (No direct impact on system uptime).
## Remediation
### Patches
- Google attempted a fix in the **September Android security update** (related timeline for CVE-2025-48561), but this was bypassed by the researchers.
- An effective solution is expected in the **December 2025 Android security update**.
### Workarounds
- No specific vendor-provided workarounds were detailed, other than relying on the upcoming December patch.
- Users should exercise caution when enabling applications via intents, especially those displaying sensitive one-time codes.
## Detection
- Indicators of compromise: Unusual system behavior related to SurfaceFlinger activity or extremely high background resource usage (though leakage rate is low, successful repeated use indicates compromise).
- Detection methods and tools: The article does not detail specific IoCs for detection, but detection would likely involve monitoring for unusual foreground/background window interaction patterns involving masking activities and reliance on the GPU data path.
## References
- Vendor Advisories: Google committed to fixing the flaw in the December 2025 update.
- Relevant links:
- Research paper methodology: defanged-pixnapping.com
- Related GPU attack information: bleepingcomputer.com/news/security/modern-gpus-vulnerable-to-new-gpuzip-side-channel-attack/