September 13, 2024 at 11:21AM A security flaw, GAZEploit, was discovered in Apple’s Vision Pro mixed reality headset, allowing attackers to infer data from the virtual keyboard using eye movements. Apple released visionOS 1.3 to fix the vulnerability, suspending the affected component, Presence. The attack could compromise user privacy by remotely inferring keystrokes from video … Read more
September 13, 2024 at 09:33AM Apple has released a patch for its Vision Pro mixed reality headset after researchers demonstrated an attack method, known as GAZEploit, that could infer a user’s typed data by tracking their avatar’s eye movements. The vulnerability, tracked as CVE-2024-40865, has been patched with the release of visionOS 1.3, which suspends … Read more
June 21, 2024 at 09:21AM Apple classified a recently patched Vision Pro vulnerability as a DoS issue, but a researcher has demonstrated its potential for filling a room with spiders and bats. This exploit highlights the severity of the flaw, raising concerns about the security implications of spatial computing. Based on the meeting notes, it … Read more