Long-time NR reader and contributor Horshack found a major vulnerability in Nikon’s C2PA feature on the Z6 III camera (released a week ago). Here is his report: I’ve found a way to circumvent the C2PA protections on the Z6 III using the camera’s multiple exposure feature. For those unfamiliar, this feature lets you take multiple exposures and have the camera blend them together into a single out-of-camera jpg file, using one of several blending modes “Add”, “Average”, “Lighten”, or “Darken”. The feature has an overlay option that lets you specify the first exposure to blend, using an existing raw file on the media card. Here is the description of this option from the Z6 III manual: Z6 III manual page for Multiple Exposure feature, Overlay option Normally you’d select an image taken with the same camera as your overlay but the feature will let you select any valid Z6 III raw image that’s on the media card, including those taken with another body. If you pick a raw from a non-C2PA enabled Z6 III as your overlay image and then use that raw with the multiple-exposure overlay feature on a C2PA-enabled Z6 III, the resulting jpg produced by the multiple exposure feature will have the C2PA credentials of an image the camera didn’t take. What’s worse, if instead of taking the photo with the non-C2PA enabled camera you instead generated the image with AI and stored it in bayered form over an existing valid Z6 III raw you can have...
Published By: Nikonrumors - Yesterday