The Apple Vision Pro has a worrying security flaw: hackers could easily guess passwords based on eye movements.

Researchers have identified a security flaw in Apple's Vision Pro mixed reality device that allows them to reconstruct users' passwords, PINs and messages.

The researchers called it “GAZEploit” and used eye-tracking data to decode what users typed using their eyes on the virtual keyboard.