Android 15 may shield your sensitive login codes،
Keeping your online accounts secure is a constant battle, which is why using passwords or two-factor authentication (2FA) becomes essential. Two-factor authentication codes add an extra layer of security, helping prevent hackers from accessing your accounts, but some of the methods currently used to send these codes aren't the most secure. This could actually change with Android 15, as new lines found in the source code suggest.
How does Google plan to protect your login codes?
Google appears to be adding a new permission called “RECEIVE_SENSITIVE_NOTIFICATIONS. This would likely be very restricted, making it only available to certain system apps on your phone. The feature would likely work in tandem with Android's “NotificationListenerService” API, the system that lets apps read and interact with your notifications. This API is not automatically active and you usually need to enable it manually in your settings.
Current notification access settings enabled Android 14 | Source: Android Authority
Code snippets also indicate that Android 15 might have a feature called “OTP_REDACTION”, which can hide 2FA codes directly on your lock screen. Android's NotificationListenerService can be very powerful, making it a potentially valuable tool for malicious apps to access sensitive data.