Thermanator Attack Steals Passwords by Reading Thermal Residue on Keyboards July 4, 2018 https://www.bleepingcomputer.com/ne...ords-by-reading-thermal-residue-on-keyboards/
That would only be effective against weak passwords. As an example; if I deliberately gave you all the letters, numbers, punctuation, etc.... in my passphrase I feel strongly that you STILL could not brute force your way in. There are just too many permutations in a 35 character set. Of course joe average user is usually under 10 and maybe closer to 6, so yep for them it could be done!