Android 15 may block unauthorized apps from OTPs
2 min read
In recent years, Google has consistently enhanced Android’s security with features like Play Protect. Now, they’re exploring a new feature for Android 15 to protect OTPs and 2FA codes from hackers.
The susceptibility of OTPs and 2FA codes
While OTPs and 2FA codes sent through email or text messages are convenient for users because they are easy to read, they also pose a significant security risk. These codes are easily stolen, raising concerns about data privacy and security.
New Security Measure in Android 15
According to Android expert Mishaal Rehman, Android 14 QPR3 Beta 1 introduces a new permission called RECEIVE_SENSITIVE_NOTIFICATIONS. This permission is important for improving security by limiting access to apps with the appropriate role or those authorized by the device manufacturer (OEM).
Future Prospects and Features of Android 15
While Google has not yet released detailed information about the function of this new permission, indications suggest that it will not be accessible to third-party apps. This restriction hints at an upcoming feature development aimed at concealing sensitive notifications from untrusted apps, providing users with enhanced protection against potential data breaches.
Revealing Concealed Safeguards
Rehman’s investigation also revealed an unused flag called OTP_REDACTION in the Android 14 source code. This flag suggests a feature that could hide OTP and 2FA notifications on the lock screen, providing an additional layer of security against unauthorized access.
Looking Forward: Android 15
Google recently introduced the initial developer preview of Android 15, highlighting numerous enhancements, particularly focusing on performance, privacy, and security. The release of Android 15 is anticipated to coincide with the launch of the Pixel 9 series in October, promising users improved security measures for a more robust Android experience.
