The Apple Vision Pro launched with a first-of-its-kind security flaw straight out of science fiction

By
4comments
Google News Follow
Follow us on Google News
We may earn a commission if you make a purchase from the links on this page.
Close-up of an eye using Apple Vision Pro
This year Apple tried its hand at the XR (Extended Reality) industry. And though the price of its headset has drawn lots of ridicule, the Apple Vision Pro has also accomplished a multitude of firsts for the industry. Apparently one of these was a new kind of security exploit never seen before in any device.

The exploit apparently made it possible to figure out what a person was typing by, and this is pretty cool, tracking their eye movements. Yep, the same principle Apple’s headset uses to let you browse its visionOS could be turned against you with alarming accuracy.

iPhone 16 Pro Max: Up to $650 off with trade-in

Go Pro Max without breaking the bank this year! The iPhone 16 Pro Max is currently available at the official Apple Store for up to $650 off with eligible trade-ins.
$650 off (54%) Trade-in
$549
$1199
Buy at Apple

Get the iPhone 16 Pro at Amazon with Boost Mobile

The latest AI-enhanced iPhone 16 Pro is available for purchase at Amazon with Boost Mobile. The smartphone arrives for less than $1, provided that you pick a wireless service plan by Boost Mobile ($65/mo) and activate your device.
$1000 off (100%)
Buy at Amazon

Get the iPhone 16 at Amazon with Boost Mobile

Get the iPhone 16 to experience Apple Intelligence and get things done effortlessly. The smartphone is available at Amazon with Boost Mobile for 100% off. You have to pick a Boost Mobile wireless plan ($65/mo). This bargain requires activation.
$830 off (100%)
Buy at Amazon

According to the researchers who alerted Apple to this exploit, they were able to correctly guess a password within the first five tries 77 percent of the time. For text messages this number rose to 92 percent. This is the first time information has been able to be extracted from a user’s “gaze data”.

Video Thumbnail
I am 77 percent certain his password is password. | Video credit — Apple

The exploit didn’t require the researchers to hack into the Vision Pro either. Those personas that Vision Pro users can use to portray themselves online? They were the culprit. Apparently just by analyzing the eye movements on the personas it was possible to decipher what the user was typing.

Fortunately, the researchers claim this vulnerability wasn’t detected and exploited before they alerted Apple back in April. The company patched out the flaw in visionOS 1.3 near the end of July. I have no clue why Apple took that long, especially since the “fix” just disables the personas when a user is typing, but at least it’s patched now.

This exploit immediately reminded me of science fiction media where we see ridiculous concepts like enhancing an awfully blurry image or lip-reading from five miles away. Only this time it was actually real, perhaps a testament to the Vision Pro’s stellar eye tracking.

The Vision Pro is one of the best AR headsets currently available today but news like this reminds us that, when designing something novel, expect novel problems as well.
Create a free account and join our vibrant community
Register to enjoy the full PhoneArena experience. Here’s what you get with your PhoneArena account:
  • Access members-only articles
  • Join community discussions
  • Share your own device reviews
  • Build your personal phone library
Register For Free
https://m-cdn.phonearena.com/images/users/350-200/Abdullah.jpg
Abdullah Asim Senior News Writer
Abdullah loves smartphones, Virtual Reality, and audio gear. Though he covers a wide range of news his favorite is always when he gets to talk about the newest VR venture or when Apple sets the industry ablaze with another phenomenal release.

Popular stories

Apple’s arrogance has paved the way for Samsung’s victory in the VR era, here’s what it needs to do
Apple’s arrogance has paved the way for Samsung’s victory in the VR era, here’s what it needs to do
Loading Comments...

Latest News

Apple’s arrogance has paved the way for Samsung’s victory in the VR era, here’s what it needs to do
Apple’s arrogance has paved the way for Samsung’s victory in the VR era, here’s what it needs to do
Samsung's "Project Moohan" XR headset ditches "Hey Google" for "Hey Gemini"
Samsung's "Project Moohan" XR headset ditches "Hey Google" for "Hey Gemini"
Google and Samsung unveil Android XR and Project Moohan XR headset, challenging Apple's Vision Pro
Google and Samsung unveil Android XR and Project Moohan XR headset, challenging Apple's Vision Pro
Apple Vision Pro is finally getting dedicated VR controllers
Apple Vision Pro is finally getting dedicated VR controllers
Samsung AR glasses will have no actual AR [UPDATED]
Samsung AR glasses will have no actual AR [UPDATED]
Vision Pro successors will inch closer to replacing your iPhone
Vision Pro successors will inch closer to replacing your iPhone
FCC OKs Cingular\'s purchase of AT&T Wireless