Technology
VR headsets vulnerable to 'Inception attacks' — where hackers can mess with your sense of reality and steal your data
Scientists have identified a vulnerability in virtual reality (VR) headsets that could let hackers access private information without the wearers' knowledge.
A hacker can insert a new "layer" between the user and the device's normal image source. Hackers can then deploy a fake app in the VR headset that might trick the wearer into behaving in specific ways or giving up their data. This is known as an "Inception layer," referring to Chris Nolan's 2010 sci-fi thriller in which espionage agents infiltrate a target's mind and implant an idea the target assumes is their own.
The VR "Inception attack" was detailed in a paper uploaded March 8 to the preprint server arXiv, and the team successfully tested it on all versions of the Meta Quest headset.
Researchers found several possible routes of entry into the VR headset, ranging from tapping into a victim's Wi-Fi network to "side-loading" — which is when a user installs an app (possibly loaded with malware) from an unofficial app store. These apps then either pretend to be the baseline VR environment or a legitimate app.
All of this is possible because VR headsets don't have security protocols anywhere near as robust as in more common devices like smartphones or laptops, the scientists said in their paper.
Using this new fake layer, hackers can then control and manipulate interactions in the VR environment. The user won't even be aware they're looking at and using a malicious copy of, say, an app they use to catch up with friends.
Related: 'White hat hackers' carjacked a Tesla using cheap, legal hardware — exposing major security flaws in the vehicle
-
Technology4h ago
Understanding Retrieval-Augmented Generation (RAG): The Future of AI-Powered Information Retrieval and Response Generation
-
Technology23h ago
Pakistani PhD student wins ‘Commonwealth Chemistry Award’ for research in health, wellbeing | The Express Tribune
-
Technology1d ago
Canva down: Users report major disruptions in editing, downloading images | The Express Tribune
-
Technology1d ago
Uranus: 243 years later, new discoveries challenge what we thought we knew | The Express Tribune
-
Technology1d ago
Taurid meteor shower set to light up UK skies over next two nights | The Express Tribune
-
Technology2d ago
I’m a neuroscientist who taught rats to drive − their joy suggests how anticipating fun can enrich human life
-
Technology2d ago
Transform Your Live Experience with Concert AV: The Ultimate Guide to Audio-Visual Setup
-
Technology2d ago
VPN access 'restricted' amid connectivity issue | The Express Tribune