Thermanator: Thermal Residue-Based Post Factum Attacks On Keyboard Password Entry

Thermanator is a post factum thermal imaging attack that allows an adversary recover full password key sets up to 30 seconds and partial password key sets up to 1 minute after password entry. The attack uses a mid-range thermal imaging camera.

Full paper available on arxiv.

Thermal Timelapse

Password "passw0rd" thermal residue 0, 15,
30, 45 and 60 seconds after entry, left to right.

Example attack scenario


Tyler Kaczmarek
Ercan Ozturk
Gene Tsudik

Media Coverage