Most Popular
| Top Stories | Commented | Featured |
Weekend Open Forum: Google Chrome OS and the future of cloud computing featured
Tech Tip of the Week: Unearth Region-Specific Windows 7 Themes featured
Google previews its upcoming Chrome OS
Mozilla reveals 2008 revenue, rumors say Firefox coming to PS3
Sony: PlayStation 3 to be 3D-capable via firmware update
Xbox Live bans prompt class action lawsuit
TechSpot RSSIT Security
Safari, IE 8 and Firefox exploited in first day of hacking contest
Security researcher Charlie Miller, who last year managed to gain control of a MacBook through a Safari browser exploit in under two minutes, improved his mark today at the Pwn2Own event, repeating the feat in less than 10 seconds. In fact, he did so with all system and browser security updates applied. The contest is sponsored by security firm TippingPoint, which awards a prize to hackers for each vulnerability found, and shares the details with the respective software vendors in order to find solutions.
The second machine to fall was a Sony Vaio P laptop running Windows 7, which was exploited through a vulnerability in the recently released Internet Explorer 8. This was accomplished by a 25 year old computer science student at the University of Oldenburg in Germany calling himself Nils, who also demonstrated a separate exploit for Safari and Firefox.
At the end of the first day of the Pwn2Own contest, Google Chrome was the last browser standing but there is still plenty of time and prizes for more browser exploits. They will also target a selection of smartphones, including RIM's BlackBerry, Apple's iPhone, T-mobile's G1 running Android, HTC's Touch running Windows Mobile, and Nokia's N95 running Symbian.
The second machine to fall was a Sony Vaio P laptop running Windows 7, which was exploited through a vulnerability in the recently released Internet Explorer 8. This was accomplished by a 25 year old computer science student at the University of Oldenburg in Germany calling himself Nils, who also demonstrated a separate exploit for Safari and Firefox.
At the end of the first day of the Pwn2Own contest, Google Chrome was the last browser standing but there is still plenty of time and prizes for more browser exploits. They will also target a selection of smartphones, including RIM's BlackBerry, Apple's iPhone, T-mobile's G1 running Android, HTC's Touch running Windows Mobile, and Nokia's N95 running Symbian.
User Comments (7)
Post a comment| femakahuna on March 19, 2009 8:56 PM | Do software and or hardware firewalls prevent these attacks?
|
| tengeta on March 19, 2009 11:35 PM | Wait... Windows 7 outlasted a patched OSX? OUCH.
|
| captain828 on March 20, 2009 1:52 AM | How is this possible?!? FAKE!! FAKE I tell you!! Apple cannot be hacked!! //sarcasm
|
| x darthmonkey x on March 20, 2009 6:37 AM | I'm not surprised at all that OSX was the first one hacked... What caught me off guard is the fact that Chrome still stands at this point.
|
| windmill007 on March 21, 2009 7:13 AM | I think it comes down to the more you allow the browser to do (cool stuff) the easier it is to be hacked. Chrome is very limited at this point hence its super security.LOL
|
| j4m32 on March 21, 2009 7:15 AM | *AHEM*Opera  *AHEM*
|
| anguis on March 21, 2009 1:38 PM | It's no surprise considering Chrome holds a very low % of the market share in web browsers, as well as being a very simple browser with little features. It's also no surprise that someone who already has done so, used a prepared exploit to crack Safari in next to no time at all. He already had the tool made, so it really isn't impressive at all. It doesn't mean that Windows 7 is more secure, not in the least.
|
