Read our blog post for the full story: Connected things need to be thought of as software when it comes to security, and Google Glass is the perfect example to that end giving us great confidence about the device moving forward. Lookout followed responsible disclosure practices and notified Google about the vulnerability on May 16, 2013. Google clearly worked quickly to fix the vulnerability as the issue was fixed by version XE6, which was released on June 4th. Lookout recommended that Google limit QR code execution to points where the user has solicited it. Google’s changes reflected this recommendation. This responsive turnaround indicates the depth of Google’s commitment to privacy and security for this device.