: When a program (like Discord, a web browser, or an OCR service) attempts to "read" the image, it must decompress it into RAM. A
: Users frequently shared "bomb.png" files on Discord to force-crash the clients of anyone who viewed the channel. Discord eventually implemented fixes to validate image dimensions before attempting full decompression. bomb.png
RGB image requires approximately to render. : When a program (like Discord, a web
: In game communities like Garry's Mod or Roblox , "bomb.png" often refers to legacy assets or simple 16x16 pixel icons used for in-game explosives. Time Bomb | Roblox Wiki | Fandom RGB image requires approximately to render
: Because the image often contains a single solid color (like all white), it compresses efficiently. A file that looks like a 10–20 MB download can actually contain billions of pixels.
The story behind refers to a specialized type of malicious file known as a decompression bomb (or "zip bomb" variant for images). While a standard PNG file typically takes up a few kilobytes, a "bomb.png" is specifically crafted to crash applications or servers by appearing small on disk but consuming massive amounts of system memory when opened. The Technical "Full Story"
: Recent security reports highlight how these images are used to attack server-side processing tools (like OCR endpoints) to cause a Denial of Service (DoS) .