Android AI UX is great until it leaks your data

The report highlights a growing privacy and security risk from Android’s AI features (e.g., Circle to Search/Gemini), which can capture and send full-screen content for processing, potentially exposing sensitive data when apps do not set FLAG_SECURE. Using a real-world banking app example, it explains how accidental interaction can leak information into Google services (e.g., search history), shifting the threat landscape for screenshot protections. It recommends disabling Circle to Search at the device level or having app developers enforce FLAG_SECURE on sensitive screens to mitigate unintended data exposure.