Affiliate links on Android Authority may earn us a commission. Learn more.
Daily Authority: š Pixel's 'Acropalypse' security flaw
March 20, 2023

š Good morning! Itās the start of a new week, and a fresh new Daily Authority, rounding up the dayās tech headlines. Paula here, covering for Andy, and Iāll be with you tomorrow too, before I finish my replay of Heavy Rain. It looks good on the PS5 and holds up pretty well for a 13-year-old game! Letās kick off todayās newsletter with a couple of security-related storiesā¦
Severe security flaw found in the Markup tool on Pixel phones
Security researcher Simon Aarons discovered a security flaw in the markup tool on Pixels.
- The flaw, dubbed āAcropalypseā lets hackers un-redact and uncrop edited screenshots.
- This could be dangerous as it could potentially allow anyone to un-redact sensitive information youāve hidden using the markup tool ā e.g. if you sent a bank statement screenshot but hid your account number.
- The markup tool, released in 2018 with Android 9, lets you āmarkupā screenshots by cropping, highlighting, drawing, or adding text.
Whatās the good news?
- Firstly, if you shared screenshots on social media or most messaging apps, youāre safe. Most of these apps compress and re-process any shared images, so the hack isnāt possible.
- However, any screenshots shared on Discord prior to January could be affected, as the social media app only began stripping screenshots of these details in that month.
- Googleās March 2023 security update fixes the issue, but any screenshots you shared prior to updating your Pixel could still be at risk.
- You can use Aaronsā technical demo to find out if your edited screenshots can be unredacted.
Exynos chip vulnerabilities update: Is your device affected?

Last week, we warned about active vulnerabilities in Samsungās Exynos modems that could give hackers access to your device.
- Googleās Project Zero security research team posted a blog highlighting these vulnerabilities and four of the 18 identified were severe and could allow hackers to access your phone with just your phone number.
- Samsung Semiconductorās updated advisories removed the Exynos W920 (which we included in our original list of affected devices) as an affected chipset, and replaced the Galaxy A21 with the A21S.
- Affected devices included the Samsung S22, M33, M13, M12, A71, A53, A33, A21s, A13, A12 and A04 series, the Pixel 6 and Pixel 7 series, Vivo S16, S15, S6, X70, X60 and X30 series, and any vehicles using the Exynos Auto T5123 chipset.
- Google patched the issues in its March security update for Pixel 7 series devices.
- The Pixel 6, Pixel 6 Pro, and Pixel 6a are still to receive the update though, putting them at risk.
- Weāre still waiting on Samsung and other vendors to resolve these issues.
- Meanwhile, if youāre the owner of one of these devices, Google recommends turning off Wi-Fi calling and Voice-over-LTE (VoLTE) on your phone.
- You should also keep an eye out for any upcoming security updates and grab them as soon as possible.
Roundup
š± Samsung Galaxy S23 FE: Everything we know so far and what we want to see, from features and specs to a possible release date (Android Authority).
š Leaked Samsung Galaxy A24 promo reveals almost everything about the phone, could have a pretty impressive display for the price (Android Authority).
ā Also: Samsung Galaxy Watch 6 battery sizes revealed in new listing (Android Authority).
š®Waiting for the Meta Quest 3? Hereās everything we know so far and what we want to see (Android Authority).
š New Zealand is the latest country to ban TikTok from government devices, citing security concerns (Engadget).
ā We benchmarked the Snapdragon 7 Plus Gen 2 to see if itās a rival to 2022ās flagship silicon (Android Authority).
š Six months on, does the Apple iPhone 14 Pro still hold up? Check out our review revisit to find out (Android Authority).
š¢ In case you missed Fridayās sad news: Lance Reddick, āThe Wireā and āJohn Wickā star, dies at 60 (Variety).
šŗĀ Speaking of, Mashableās John Wick: Chapter 4 review is in, and it may be the best John Wick movie yet (Mashable).
š² Diablo 4ās pre-order beta beset by connectivity issues and long queues (Rock Paper Shotgun).
š Finally: The Last of Usā famous ending was almost changed for the show (Spoiler alert if you havenāt watched the finale yet!) (Kotaku).
Monday Meme
Never really thought about it, but itās trueā¦

Have a great Monday!
Paula Beaton, Copy Editor.
Thank you for being part of our community. Read ourĀ Comment Policy before posting.
