![]() However, Google was made aware of the vulnerability in January 2023, and a patch was rolled out on March 13. In theory, any cropped image sent in that time period could be partially reset. Worryingly, this news comes shortly after a similar flaw was revealed in Google Pixel Phones, which has been exploitable for around five years. Cropping with a Google Pixel – and in Google Docs – is Also Risky ![]() However, unused data that corresponds to cropped parts of images remains attached, allowing anyone with a Hex editor to recover it. PNG file signatures always finish with an “IEND” chunk at the end – data appearing after this is ignored by image viewers displaying the image. Wonder about the world that you live in /g19MTxlzN1 Compare file sizes of cropped and originalĦ. ![]() Vulnerabilities researcher Will Doormann shows how you can confirm this on Twitter:ĥ. Instead of simply deleting or removing the parts of the image a given user has cropped, Windows just leaves the unused data behind – which explains why images cropped with the Window snipping tool often appear to be the same size as uncropped originals. This week, security researchers have shown that Windows 11 tools for screenshotting and cropping images retain a lot of the original image data, allowing any recipient of such a photo to regenerate significant portions of the initial image.
0 Comments
Leave a Reply. |