Researchers from the University of California, Irvine (UCI) say a thermal camera can capture keys pressed on a keyboard. Attackers need to be able to place a camera with thermal recording features near a victim, and the camera must have a clear view of the keys for the attack to work. Attacker can recover partial key sets when the thermal data is recorded up to one minute after the key presses. Researchers say it may be time to move away from passwords as a means to secure user data and equipment.
Source: https://www.bleepingcomputer.com/news/security/thermanator-attack-steals-passwords-by-reading-thermal-residue-on-keyboards/