A newly disclosed vulnerability in Apple's Vision Pro headset, dubbed GAZEploit, exposed users’ virtual keyboard inputs to potential attacks. Researchers found that malicious actors could infer what users were typing by analyzing eye movements from shared avatars, posing significant privacy risks. This vulnerability, identified as CVE-2024-40865, was patched in visionOS 1.3. With increasing adoption of mixed reality devices, businesses should prioritize security protocols to mitigate potential threats in immersive environments, ensuring user data and interactions remain secure.
For more information, visit [The Hacker News](https://thehackernews.com/2024/09/apple-vision-pro-vulnerability-exposed.html).
Comments