In a triumphant leap for underachieving hackers everywhere, a new vulnerability called ‘Pixnapping’ has been uncovered, proving once and for all that your Android is basically TMI HQ. While you were busy ignoring those software updates, rogue apps figured out how to swipe your Googly secrets pixel by pixel, like a stealthy cat burglar at a pixelated museum.

Yes, ladies and gentlemen, your two-factor authentication codes—those heralded protectors of your digital realm—are now up for grabs without that pesky permission hurdle. Imagine the convenience: hackers can now stalk your Google Maps timeline without ever leaving their parents’ basement. Why hack the Pentagon when you can know Dave’s latte preferences in real-time?

Google, ever the overachiever, hailed it as a feature rather than a bug. “We’re just redefining the concept of sharing,” a spokesperson probably didn’t say. But don’t worry, Android users: a patch is surely on its way, right after Google finishes determining the precise location of your last attempt at cooking.