Friday, March 29, 2024
HomeSECURITYUbuntu Desktop was the main target for the third day of Pwn2Own

Ubuntu Desktop was the main target for the third day of Pwn2Own

-


Hacked Three Times: Ubuntu Desktop Top Target on Day 3 of Pwn2Own

The Synacktiv team takes home $530,000 and a Tesla Model 3 as the winners of the hacker contest.

On the third day of the hacker contest Pwn2Own Security researchers win $185,000 after exploiting 5 zero-day exploits targeting Windows 11, Ubuntu Desktop and VMware workstation.

The highlight of the day was that the Ubuntu Desktop operating system was hacked three times by three different teams. Three 0-day vulnerabilities in Ubuntu have been demonstrated:

  • Kyle Zeng of ASU SEFCOM (double freeing vulnerability (double free)) – $30,000 prize;
  • Mingi Cho of Theori (Use-After-Free Vulnerability) – $30,000 prize;
  • Byen Pham of Qrious Security – $15,000 prize (hacking errors occurred).

Also specialist Thomas Imbert from Synacktiv earned $30,000 for a Use-After-Free bug in Windows 11.

In addition, the STAR Labs team used uninitialized variables and the Use-After-Free exploit chain in VMWare Workstation for a $80,000 bounty.



First day Pwn2Own security researchers successfully demonstrated zero-day exploits for Tesla Model 3, Windows 11 and macOS in the fight for the main prize – $375,000 and Tesla Model 3. On the second day, participants received a reward of $475,000 after using 10 zero days on Windows 11, Tesla , Ubuntu and macOS.

Thus, the total winnings for security researchers amounted to $1,035,000, and the Tesla vehicle was awarded to Synacktiv specialists for 27 zero-day exploits. The Synacktiv team won the competition, taking $530,000 and a Tesla Model 3 car for their hacks.



Source link

www.securitylab.ru

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Most Popular