Welcome back!
The three day Pwn2Own contest at the CanSecWest security show is on.
And at the end of the day, 3 major browsers, Firefox, Safari and IE8 were successfully exploited.
Also a non-jailbroken iPhone was also hacked and its SMS database was stolen.
Vincenzo Iozzo and Ralf Philipp Weinmann redirected an iPhone to a web site they’d set up, crashing its browser and then stealing its entire SMS database (including some erased messages). It is possible, however, to set up a similar attack to work without crashing the browser, hackers claim, and set up different attack payloads. Iozzo and Weinmann won a $15,000 prize for successfully demonstrating the attack. Details about the attack will be released once Apple is notified and the security hole is patched.
A successful remote attack against a MacBook Pro running the latest version of Apple’s MacOS X was done by Charlie Miller – exploiting a unknown security vulnerability in the Safari browser to launch a remote shell and winning himself $10,000 plus the laptop for his work.
Peter Vreugdenhil managed to bypass Windows security features including Data Execution Prevention code via Internet Explorer 8 to take over a PC (running the latest patched version of Windows 7) – and again receiving $10,000 plus the hardware.
CNET provides all details of the hacks here.
Related Posts
- Apple to preview new iPhone software next week
- US looking for Hackers to protect cyber networks
- Google launches Nexus One
- Microsoft's Internet Explorer is Vulnerable to Attacks
- Google Finally Enables Offline Access for Gmail
Related Websites
- Save Big Bucks by Brown-Bagging It
- UAE to ban BlackBerry services, Saudi follows suit
- AT&T Halts iPhone 4 Pre-Orders Amid Heavy Demand
- A Letter: Apple Wants Its Secret iPhone Back
- Top 10 Defining Moments of the 2000s
{ 1 comment }
