GPU.zip is a side-channel attack that leaks and recontructs information rendered on a screen through a side channel it has been known since 2023, the original scope of this attack was just very limited and impractical uses through browsers. This however has changed with a new attack called Pixnapping which is a derivative/alternative use of GPU.zip.
Pixnapping allows a malicious Android app without any permissions to steal data from any other app by leaking data from the GPU and using that to reconstruct what is on the screen and displayed in the target app, essentially taking a screenshot.
Notably, our attack against Google Authenticator allows any malicious app to steal 2FA codes in under 30 seconds while hiding the attack from the user. ~ Pixnapping.com
Google issued a patch on September 2, 2025. However, this turned out ineffective (see the timeline) leading to a full fix in the December 2025 Android security update. Since then, there has not been any reported attacks or in-the-wild exploits.