Fwd: Alan Wang on Feb 9
3 views
Skip to first unread message
Alan Karp
Feb 3, 2026, 1:02:57 PMFeb 3
to <friam@googlegroups.com>
A talk some of you might find interesting.
--------------
Alan Karp
Alan Karp
---------- Forwarded message ---------
From: Aditi Partap via security-seminar <security...@lists.stanford.edu>
Date: Tue, Feb 3, 2026 at 10:00 AM
Subject: Alan Wang on Feb 9
To: security...@lists.stanford.edu <security...@lists.stanford.edu>
From: Aditi Partap via security-seminar <security...@lists.stanford.edu>
Date: Tue, Feb 3, 2026 at 10:00 AM
Subject: Alan Wang on Feb 9
To: security...@lists.stanford.edu <security...@lists.stanford.edu>
Pixnapping: Bringing Pixel Stealing out of the Stone Age
Alan Wang
Monday, February 9, 2026
Talk at 11:00am
CoDA E201 &
Zoom
Abstract:
Pixnapping is a new class of attacks that allows a malicious Android app
to stealthily leak information displayed by other Android apps or
arbitrary websites. Pixnapping exploits Android APIs and a hardware
side channel that affects nearly all modern Android devices. We have
demonstrated Pixnapping attacks on Google and Samsung phones and
end-to-end recovery of sensitive data from websites including Gmail and
Google Accounts and apps including Signal, Google Authenticator, Venmo,
and Google Maps. Notably, our attack against Google Authenticator
allows any malicious app to steal 2FA codes in under 30 seconds while
hiding the attack from the user.
Bio:
Alan Wang is a first year PhD student advised by Professor Christopher
W. Fletcher at UCB. Alan's interest primarily lies in side-channel
attacks and defenses.
security-seminar mailing list
security...@lists.stanford.edu
https://mailman.stanford.edu/mailman/listinfo/security-seminar
Alan Karp
Feb 6, 2026, 7:19:38 PMFeb 6
to <friam@googlegroups.com>
--------------
Alan Karp
Alan Karp
---------- Forwarded message ---------
From: Aditi Partap via security-seminar <security...@lists.stanford.edu>
Date: Fri, Feb 6, 2026 at 4:11 PM
Subject: Re: Alan Wang on Feb 9
To: security...@lists.stanford.edu <security...@lists.stanford.edu>
From: Aditi Partap via security-seminar <security...@lists.stanford.edu>
Date: Fri, Feb 6, 2026 at 4:11 PM
Subject: Re: Alan Wang on Feb 9
To: security...@lists.stanford.edu <security...@lists.stanford.edu>
Reminder: This talk is on Monday at 11am.
From: Aditi Partap
Sent: Monday, February 2, 2026 1:54 PM
To: security...@lists.stanford.edu <security...@lists.stanford.edu>
Sent: Monday, February 2, 2026 1:54 PM
To: security...@lists.stanford.edu <security...@lists.stanford.edu>
Subject: Alan Wang on Feb 9
Pixnapping: Bringing Pixel Stealing out of the Stone Age
Alan Wang
Monday, February 9, 2026
Talk at 11:00am
CoDA E201 &
Zoom
Abstract:
Pixnapping is a new class of attacks that allows a malicious Android app
to stealthily leak information displayed by other Android apps or
arbitrary websites. Pixnapping exploits Android APIs and a hardware
side channel that affects nearly all modern Android devices. We have
demonstrated Pixnapping attacks on Google and Samsung phones and
end-to-end recovery of sensitive data from websites including Gmail and
Google Accounts and apps including Signal, Google Authenticator, Venmo,
and Google Maps. Notably, our attack against Google Authenticator
allows any malicious app to steal 2FA codes in under 30 seconds while
hiding the attack from the user.
Bio:
Alan Wang is a first year PhD student advised by Professor Christopher
W. Fletcher at UCB. Alan's interest primarily lies in side-channel
attacks and defenses.
Reply all
Reply to author
Forward
0 new messages