Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers

September 13, 2024 at 11:21AM A security flaw, GAZEploit, was discovered in Apple’s Vision Pro mixed reality headset, allowing attackers to infer data from the virtual keyboard using eye movements. Apple released visionOS 1.3 to fix the vulnerability, suspending the affected component, Presence. The attack could compromise user privacy by remotely inferring keystrokes from video … Read more

Apple Patches Vision Pro Vulnerability to Prevent GAZEploit Attacks

September 13, 2024 at 09:33AM Apple has released a patch for its Vision Pro mixed reality headset after researchers demonstrated an attack method, known as GAZEploit, that could infer a user’s typed data by tracking their avatar’s eye movements. The vulnerability, tracked as CVE-2024-40865, has been patched with the release of visionOS 1.3, which suspends … Read more