The Google Pixel devices are facing a vulnerability as per security researchers' report, recently finding an exploit on the device's Markup tool for images and media. In this vulnerability, users who used the Markup tool to crop or remove parts of the image may be accessed by threat actors to retrieve partial parts of the photo.
The researchers dubbed this vulnerability the "aCropalypse," as cropped photos may be returning to their original form, or retrieving parts of their unedited look with this bug.
Google Pixel 'aCropalypse' Vulnerability on Markup Tool
Two security researchers centered on a significant Google Pixel vulnerability, centering on the "aCropalypse," as per Simon Aarons' latest tweet. Their recent work managed to discover an underlying problem on Pixel smartphones, as the Markup tool may be used to recover redacted or cropped information on a photo.
This is extremely alarming for Pixel users who use this built-in tool, especially as their information and data may be taken by threat actors familiar with this problem present on their devices.
The CVE-2023-21036 vulnerability discovered by both Aarons and David Buchanan warns users of this exploit that is present on their devices, as detailed in the latter's blog post.
Aarons and Buchanan claimed that the redacted information are easily accessible and may return to its original form after running through a special code to retrieve the removed data.
Read also: Google Pixel Fold Rumors: Device Launch Coming this June, What to Expect from the New Foldable?
Hackers, Data Miners may Recover Cropped Photos
Future images on the Pixel are protected, but previous screenshots or photos cropped via the Markup tool may face problems in terms of data security and privacy. This information may be readily available for threat actors to work on, in recovering valuable cropped data and recovering countless of sensitive information as per the images.
Google Pixel Vulnerabilities from the Past
Pixel is a pillar for Android, as it gets all the latest updates and features from Google to bring the smartphone OS experience for all. One of the previous problems on the Pixel with Android is with the Android 13 OS version where users cannot connect or access RCS for their messaging needs via Mobile Data.
There were also several vulnerabilities on the Play Store for all Android devices now, leveraging the fame and significance of ChatGPT in the present. Many developers who hide malware on apps use ChatGPT's name to bring applications that hide malware, and this would only be active once it is downloaded and installed on the device, also allowing access to their smartphones.
Google Pixel is first and foremost, an Android device, and it would also have the similar vulnerabilities present here, making it a significant problem for users. The recent Markup tool's vulnerability may be damaging for users, especially in cropping information about their payment details, personal information, and other sensitive data should it not be addressed immediately.
Related Article : This Google Pixel Watch Bug Will Force Users to Double-Set their Alarms