MASTG-BEST-0014: Preventing Screenshots and Screen Recording
Ensure the app hides sensitive content, such as card numbers and passcodes, from screenshots, screen recording, nonsecure displays, task switcher thumbnails, and remote screen sharing. Malware may capture screen output and extract confidential information. Protect on screen keyboards or custom keypad views as they may leak keystrokes from passcode fields. Screenshots can be saved in locations accessible to other apps or a local attacker.
Setting FLAG_SECURE
on the window prevents screenshots (or appear black), blocks screen recording, and hides content on nonsecure displays and in the system task switcher.

FLAG_SECURE

FLAG_SECURE
You can follow the official documentation to implement FLAG_SECURE
in your app, see "Secure sensitive activities".
Tests¶
MASTG-TEST-0289: Runtime Verification of Sensitive Content Exposure in Screenshots During App Backgrounding MASTG-TEST-0291: References to Screen Capturing Prevention APIs