Windows 11 Snipping Tool can leak vulnerable information you cropped out

The aCropalypse is here for Windows 11.

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Update: March 23, 2023 at 2:08 PM ET

Microsoft appears to be testing a fix for the Snipping Tool bug. A tweet byTwitter user Xenosuggests that the solution may only be available for Canary Insiders at this time, though that is not confirmed.

What you need to know

Windows 11’s Snipping Tool has a vulnerability that can be exploited to expose data that users have cropped out of screenshots. The problem is similar to “aCropalypse,” which is a vulnerability with the screenshot tool on Google Pixel phones. In both instances, a person can at least partially recover data that has been cropped out of images.

The exact workings of the vulnerabilities differ slightly, but the end result is the same. Chris Blume, a retired software engineer noted the Windows 11 Snipping Tool flaw:

I’ve got a fun one for you all to look at.I opened a 198 byte PNG with Microsoft’s Snipping Tool, chose “Save As” to overwrite a different PNG file (no editing), and saves a 4,762 byte file with all that extra after the PNG IEND chunk.Sounds similar :DMarch 21, 2023

David Buchanan took a closer look at the phenomenon andshared insights on Twitter.

The security implications of this vulnerability are severe. If someone used the Snipping Tool to capture a page that included their address, credit card number, or other personal information, they would likely assume cropping the image would remove that data. Any shared images containing that information could open the doors to identity theft or other issues.

Security expert Will Dorman confirmed the vulnerability andshared the stepsto confirm the problem:

Can confirm.Easy test:1. Copy an image (to have a backup)2. Open one with Snipping tool3. Crop it to make it much smaller4. Click the Save icon5. Compare file sizes of cropped and original6. Wonder about the world that you live in https://t.co/2V3totEqw6 pic.twitter.com/g19MTxlzN1March 21, 2023

BleepingComputershared a technical breakdown of how the vulnerability can be exploited and to what extent data can be restored through it.

Get the Windows Central Newsletter

All the latest news, reviews, and guides for Windows and Xbox diehards.

There’s already an aCropalypse screenshot recovery app that can restore information from Pixel phones. While that does not work with images from the Windows 11 Snipping Tool at this time, a similar app could arrive in the future. Buchannan shared a Python script with BleepingComputer that is able to recover files from Windows 11.

Microsoft confirmed to BleepingComputer that it is aware of reports and looking into the issue. “We are aware of these reports and are investigating. We will take action as needed to help keep customers protected,” said a Microsoft spokesperson.

Sean Endicott is a tech journalist at Windows Central, specializing in Windows, Microsoft software, AI, and PCs. He’s covered major launches, from Windows 10 and 11 to the rise of AI tools like ChatGPT. Sean’s journey began with the Lumia 740, leading to strong ties with app developers. Outside writing, he coaches American football, utilizing Microsoft services to manage his team. He studied broadcast journalism at Nottingham Trent University and is active on X @SeanEndicott_ and Threads @sean_endicott_.