Google’s Android operating system has been compromised by a “High” severity security flaw involving the Pixel’s Markup screenshot tool. The flaw, known as acropalypse, allows someone to take a screenshot cropped in Markup and undo at least some of the edits in the image, meaning sensitive information can still be revealed. According to researchers, the vulnerability has existed for about five years, and previous images shared by Pixel users could still be at risk. While some websites process images in a way that renders the flaw useless, some social media and chat apps may still be vulnerable. The March security patch has been released for some Pixel devices, but it is unclear when it will be pushed to others. In the meantime, users are advised to avoid using Markup to share sensitive images.
Google Pixel flaw enables bad actors to reverse Markup screenshot modifications and redactions. #Cybersecurity #GooglePixelVulnerability
