thezdi · TEXXR

Confirmed! Our final attempt of the day had Manfred Paul (@_manfp) execute a double-tap on both #Chrome and #Edge browsers with the rare CWE-1284 Improper Validation of Specified Quantity in Input. He earns $42,500 and 15 Master of Pwn points. #Pwn2Own [image]

2024-03-22 View on X

BleepingComputer

On Pwn2Own Vancouver 2024 Day 1, contestants earned $732,500 and a Tesla Model 3 for demoing 19 zero-days in Windows 11, Tesla cars, Ubuntu, and other products

On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities …

View original

Confirmed! @le_douds and @Ga1ois from Palo Alto used an OOB Read plus a novel technique for defeating V8 hardening to get arbitrary code execution in the renderer. The were aboe to exploit #Chrome and #Edge with the same bugs, earning $42,500 and 9 Master of Pwn points. #Pwn2Own [image]

2024-03-22 View on X

BleepingComputer

On Pwn2Own Vancouver 2024 Day 1, contestants earned $732,500 and a Tesla Model 3 for demoing 19 zero-days in Windows 11, Tesla cars, Ubuntu, and other products

On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities …

View original

That's a wrap! #Pwn2Own Vancouver is complete. Overall, we awarded $1,132,500 for 29 unique 0-days. Congrats to @_manfp for winning Master of Pwn with $202,500 and 25 points. Here's the final top 10 list: [image]

2024-03-22 View on X

BleepingComputer

On Pwn2Own Vancouver 2024 Day 1, contestants earned $732,500 and a Tesla Model 3 for demoing 19 zero-days in Windows 11, Tesla cars, Ubuntu, and other products

On the first day of Pwn2Own Vancouver 2024, contestants demoed Windows 11, Tesla, and Ubuntu Linux zero-day vulnerabilities …

View original

That's a wrap on #Pwn2Own Toronto 2023! We awarded $1,038,250 for 58 unique 0-days during the event. Congratulations to Team Viettel (@vcslab) for winning Master of Pwn with $180K and 30 points. We'll see you at Pwn2Own Automotive in Tokyo next January. [image]

2023-10-29 View on X

BleepingComputer

Researchers earned $1M+ for 58 zero-day exploits targeting consumer products at Pwn2Own Toronto 2023 and hacked a fully patched Samsung Galaxy S23 four times

This playlist contains all of the videos recorded at Pwn2Own Toronto 2023. Dustin Childs / Zero Day Initiative : Pwn2Own Toronto 2023 - Day Three Results Alex Ivanovs / Stack Diary...

View original

Success! STAR Labs SG was able to exploit a permissive list of allowed inputs against the Samsung Galaxy S23. They earn $25,000 and 5 Master of Pwn points. #Pwn2Own [image]

2023-10-29 View on X

BleepingComputer

Researchers earned $1M+ for 58 zero-day exploits targeting consumer products at Pwn2Own Toronto 2023 and hacked a fully patched Samsung Galaxy S23 four times

This playlist contains all of the videos recorded at Pwn2Own Toronto 2023. Dustin Childs / Zero Day Initiative : Pwn2Own Toronto 2023 - Day Three Results Alex Ivanovs / Stack Diary...

View original

Success! STAR Labs SG was able to exploit a permissive list of allowed inputs against the Samsung Galaxy S23. They earn $25,000 and 5 Master of Pwn points. #Pwn2Own [image]

2023-10-28 View on X

BleepingComputer

Researchers earned $1M+ for 58 zero-day exploits targeting consumer products at Pwn2Own Toronto 2023 and hacked a fully patched Samsung Galaxy S23 four times

The Pwn2Own Toronto 2023 hacking competition has ended with security researchers earning $1,038,500 for 58 zero-day exploits …

View original

That's a wrap on #Pwn2Own Toronto 2023! We awarded $1,038,250 for 58 unique 0-days during the event. Congratulations to Team Viettel (@vcslab) for winning Master of Pwn with $180K and 30 points. We'll see you at Pwn2Own Automotive in Tokyo next January. [image]

2023-10-28 View on X

BleepingComputer

Researchers earned $1M+ for 58 zero-day exploits targeting consumer products at Pwn2Own Toronto 2023 and hacked a fully patched Samsung Galaxy S23 four times

The Pwn2Own Toronto 2023 hacking competition has ended with security researchers earning $1,038,500 for 58 zero-day exploits …

View original

STAR Labs was able to execute their improper input validation attack on their 3rd try against the Samsung Galaxy S22. They earn $50K and 5 Master of Pwn points. #P2OToronto #Pwn2Own The team got a great video of the exploit attempt: https://youtube.com/... https://twitter.com/...

2022-12-08 View on X

SecurityWeek

Pwn2Own Toronto 2022: on the first day, participants earned $400K total for new exploits targeting Samsung Galaxy S22, printers, routers, and NAS devices

what you need to know James Sebree / Tenable TechBlog : NETGEAR Router Network Misconfiguration Hisan Kidwai / Android Headlines : Galaxy S22 falls for two zero-day attacks during ...

View original

It's patch Tuesday, and #Adobe and #Microsoft both had large releases. Join @dustin_childs as he breaks down all the details, including showing which bugs are under active attack. https://www.zerodayinitiative.com/ ...

2022-04-13 View on X

ZDNet

Microsoft releases over 100 security fixes, including patches for two zero-day vulnerabilities, for Windows, Office, Edge, Dynamics, Hyper-V, and other software

Microsoft has dealt with zero-day bugs in the firm's customary monthly batch of security fixes. Source: Microsoft Security Response Center .

View original

August heats up with a large group of patches from #Adobe and #Microsoft. Join @dustin_childs as he breaks down the details and shows which bugs are potentially wormable. https://www.zerodayinitiative.com/ ... #PatchTuesday

2019-08-14 View on X

Krebs on Security

Microsoft patches four wormable BlueKeep-like bugs in Remote Desktop Service, two of which can be exploited remotely without authentication or user interaction

Most Microsoft Windows (ab)users probably welcome the monthly ritual of applying security updates about as much as they look forward …

View original