Apple recently fixed a security vulnerability in the Vision Pro that would have made it possible to reconstruct inputs such as passwords and messages. This vulnerability was discovered by computer scientists who reported the vulnerability to Apple in April 2024. The problem was fixed with the update to visionOS 1.3. Here you can find out what is behind this security vulnerability and why you should definitely update your Vision Pro.
Technology offers many new possibilities, but it also brings security risks. The Apple Vision Pro, an innovative headset that takes virtual reality to a new level, is no exception. The vulnerability in question is called "GAZEploit" and showed that inputs on the virtual keyboard could potentially be monitored. Apple acted quickly, but it's important that you keep your device up to date.
What is “GAZEploit”?
GAZEploit describes a vulnerability where your eye movements could be analyzed by the Vision Pro's virtual persona avatar feature. The problem occurred primarily when you used the virtual keyboard during a FaceTime call or in other applications. The researchers found that eye movements could be used to predict quite accurately which key you would press next. Messages could be correctly decrypted in over 90% of cases, and passwords could also be guessed in almost 80% of cases. This is a serious risk for you as a user, especially if you are entering sensitive data.
Apple's solution
Apple reacted quickly to the researchers' report and released an update. With visionOS 1.3, the Persona function is automatically deactivated as soon as you use the virtual keyboard. This means that attackers can no longer read eye movements to reconstruct your input. On September 5, 2024 published Apple also released an official security advisory describing the details of the update and the vulnerability that was fixed. The problem has now been officially resolved.
What should you do?
If you are using a Vision Pro, it is important that you update to visionOS 1.3 or higher as soon as possible to ensure you are protected from this vulnerability. To do this, simply go to your headset's settings and download the latest update.
Apple fixes Vision Pro security vulnerability: Update required
The discovery of the GAZExploit vulnerability shows that even the most advanced technologies can pose security risks. However, Apple acted quickly and closed the loophole. To protect your data, it is important to make sure your Vision Pro is up to date. Do you need useful tips for your Apple Vision Pro? Here you can discover everything you need to know about your new Apple device – enjoy reading! Are you looking for new accessories? Visit our Amazon Storefront – there you will find a variety of products from leading providers, including for HomeKit and more! (Image: Apple)
