Internet browsers similar Microsoft Edge, Firefox too Safari were a prime number target for the white chapeau hackers at the annual ethical hacking conference, Pwn2Own 2018, that is held inwards Vancouver, Canada.
According to the latest reports, the prize-money was awarded past times Trend Micro's Zero Day Initiative (ZDI), till at ane time hackers convey won $267,000 of the total $2 meg for hacking Firefox, Edge, too Safari.
"The biggest surprise is how many people targeted Apple Safari," Dustin Childs, communications director for ZDI, told eWEEK. "It's actually returning to the roots of Pwn2Own when nosotros saw a lot of individuals targeting macOS."
On the source hateful solar daytime of the 2018 resultant vulnerabilities inwards Microsoft Edge, Oracle VirtualBox too Apple Safari were exploited past times the attendees. While, on the minute hateful solar daytime Apple safari, equally good equally Mozilla Firefox, was the prime number target for the researchers.
Security researcher Richard Zhu won the rival past times gaining 12 points for exploiting Firefox too Edge. Zhu took dwelling $120,000 of the $267,000 total prize money. Each researcher got to maintain the laptop they tried their exploits on.
"One thing nosotros learned this twelvemonth is the importance of giving researchers equally much fourth dimension to develop their exploits equally possible," Childs said. "We saw around contestants take away because they only didn’t convey plenty fourth dimension to consummate their chains due to the increased complexity of the targets."
Pwn2Own 2018, present that inwards recent times operating systems too spider web browsers convey acquire to a greater extent than secure inwards recent years, but still, fifty-fifty fully patched systems tin last exploited past times the best safety researchers.
"Software volition e'er last vulnerable," Childs said. "No thing what patches are released, researchers volition maintain to detect holes inwards pop firm platforms." a
According to the latest reports, the prize-money was awarded past times Trend Micro's Zero Day Initiative (ZDI), till at ane time hackers convey won $267,000 of the total $2 meg for hacking Firefox, Edge, too Safari.
"The biggest surprise is how many people targeted Apple Safari," Dustin Childs, communications director for ZDI, told eWEEK. "It's actually returning to the roots of Pwn2Own when nosotros saw a lot of individuals targeting macOS."
On the source hateful solar daytime of the 2018 resultant vulnerabilities inwards Microsoft Edge, Oracle VirtualBox too Apple Safari were exploited past times the attendees. While, on the minute hateful solar daytime Apple safari, equally good equally Mozilla Firefox, was the prime number target for the researchers.
Security researcher Richard Zhu won the rival past times gaining 12 points for exploiting Firefox too Edge. Zhu took dwelling $120,000 of the $267,000 total prize money. Each researcher got to maintain the laptop they tried their exploits on.
"One thing nosotros learned this twelvemonth is the importance of giving researchers equally much fourth dimension to develop their exploits equally possible," Childs said. "We saw around contestants take away because they only didn’t convey plenty fourth dimension to consummate their chains due to the increased complexity of the targets."
Pwn2Own 2018, present that inwards recent times operating systems too spider web browsers convey acquire to a greater extent than secure inwards recent years, but still, fifty-fifty fully patched systems tin last exploited past times the best safety researchers.
"Software volition e'er last vulnerable," Childs said. "No thing what patches are released, researchers volition maintain to detect holes inwards pop firm platforms." a
