Google released the first Developer Preview of the upcoming Android 15 operating system on Friday, February 16. The new software will focus on enhancing security, with reports suggesting three new ways it will protect sensitive data on smartphones.
One key feature of Android 15 will be its ability to safeguard notifications related to two-factor authentication (2FA) from being accessed by malicious apps or malware. This added layer of security aims to prevent unauthorized access to user data.
The operating system will address security gaps left by its predecessors by introducing new measures. Currently, most 2FA methods rely on SMS to deliver one-time passwords, posing a risk if intercepted by unauthorized apps to compromise sensitive information.
Google has already taken steps to enhance security by introducing a new permission called RECEIVE_SENSITIVE_NOTIFICATIONS in the Android 14 QPR3 Beta 1 update. This permission, with a higher protection level, will only be granted to apps verified by Google, restricting access to certain types of notifications.
Another development is the NotificationListenerService API, which will require users to manually grant access to apps before they can interact with notifications. This added layer of security will make it more challenging for malicious apps to exploit 2FA notifications.
Furthermore, a new flag called OTP_REDACTION may be activated in Android 15 to hide OTP notifications on the lock screen, further enhancing security measures. These developments collectively indicate Google’s commitment to protecting sensitive data on smartphones.