pwn 2 own - Gizmodo

posts about #pwn2own more →
Winning Pwn2Own Hacker: Macs Are Safer Than PCs
Every Smartphone OS Endures Pwn2Own Unhacked
Chrome Is the Last Browser Standing at Pwn2Own Hacking Competition
Safari Cracked in Seconds at Pwn2Own Hacking Competition
Adobe Knew of Vista PWN 2 OWN Hack All Along
T Pities Fool Who Bids on Hacked Fujitsu U810 With Live Virus "Still Present"
Who Will Get Hacked First: Vista, OSX or Linux? Place Your Bets Here

Your version of Internet Explorer is not supported. Please upgrade to the most recent version in order to view comments.

Dsmvwl Admin Promote to frontpage Approve user Ban user ×

Kaiser-Machead
03/26/09

In reply to Winning Pwn2Own Hacker: Macs Are Safer Than PCs
One thing I still don't understand is: OK, so we've established that hackers just don't care about OS X as much, but whenever you read through comment strings on forums about OS X's safety compared to Windows, there's often at least one person saying "Man I should just script some crazy shit and wipe the iSmirk off of their smug faces", but nothing ever really happens. I know a lot of people like to talk shit online, but you'd think that someone would do it just because it can be done, not to actually gain anything material from the machines.
Reply

Kaiser-Machead was starred Kaiser-Machead was unstarred

Isaac Boehman
03/26/09

In reply to Winning Pwn2Own Hacker: Macs Are Safer Than PCs
The link to the "took over a MacBook through Safari in 10 seconds" article is broken. It leads to [localhost]
Reply

Isaac Boehman was starred Isaac Boehman was unstarred

matt buchanan
03/26/09

@Isaac Boehman: Because I suck at copy + paste. I blame my iPhone.
Reply

matt buchanan was starred matt buchanan was unstarred

Isaac Boehman
03/26/09

@matt buchanan: Not running 2.2.1?
Reply

Isaac Boehman was starred Isaac Boehman was unstarred

matt buchanan
03/26/09

@Isaac Boehman: No, it's because I am.
Reply

matt buchanan was starred matt buchanan was unstarred

Jrsy Devil's Advocate®
03/25/09

In reply to Every Smartphone OS Endures Pwn2Own Unhacked
That image is still missing one phone...
Reply

Acheron's Grief
03/25/09

@Jrsy Devil's Food Cake®: "No Symbian for you! Next!"
Reply

Acheron's Grief was starred Acheron's Grief was unstarred

Jrsy Devil's Advocate®
03/25/09

@Acheron's Grief:

Reply

Monty
03/25/09

In reply to Every Smartphone OS Endures Pwn2Own Unhacked
You have to consider the fact that hacking a cell phone is not nearly as useful as hacking an actual computer. Perhaps that will change as they think of ways to use that connection for evil, but presently, I think most hackers would prefer to keep their focus on desktops and laptops. We will see if that changes next year.
Reply

Monty was starred Monty was unstarred

Jim Topoleski
03/20/09

In reply to Chrome Is the Last Browser Standing at Pwn2Own Hacking Competition
can we PLEASE FREAKING STOP with the 10 second remark. it was NOT 10 seconds it was over 24 hours, and 10 seconds INTO the second day AFTER the guy coded the crack for 9 hours that previous night.
Reply

Jim Topoleski was starred Jim Topoleski was unstarred

Nick
03/20/09

@Jim Topoleski: stop whining. the exploit took 10 seconds to implement. who cares how long it took to code.
Reply

Nick was starred Nick was unstarred

GitEmSteveDave_HurtHisKnee
03/20/09

In reply to Chrome Is the Last Browser Standing at Pwn2Own Hacking Competition
Can't be that good of a browser. Judging by the open tab, it lets Facebook through.

I kid!
Reply

350z-Racer
03/20/09

In reply to Chrome Is the Last Browser Standing at Pwn2Own Hacking Competition
whats that blurred bookmark?
Reply

350z-Racer was starred 350z-Racer was unstarred

Nick
03/20/09

@[x7productions]: yes, what is that blurred bookmark?
Reply

Nick was starred Nick was unstarred

Lite: hates Illinois Nazis
03/20/09

In reply to Chrome Is the Last Browser Standing at Pwn2Own Hacking Competition
Is it because it is more secure, or because nobody uses the damn thing?
Reply

eagles3 speeeedin
03/20/09

@Lite: thinks Scotty doesn't know.: The Mac effect?
Reply

eagles3 speeeedin was starred

Lite: hates Illinois Nazis
03/20/09

@eagles3: Pretty much.
Reply

JuiceDaddy
03/20/09

@Lite: thinks Scotty doesn't know.: Wow... You couldn't be more wrong...

Chrome makes every page, tab, plugin, etc... into a separate process. Some exploit may be able to take one thing down, but there is no way for it to affect the entire browser (in theory)

It's to bad it doesn't have adblock... I'd totally make the switch
Reply

JuiceDaddy was starred JuiceDaddy was unstarred

willyolio
03/20/09

@eagles3:

no, the mac effect is touting an air of superiority while being the least secure system around.

last year, macs were the first to fall. this year, the mac browser safari was the first to fall.

i think chrome is actually just well-designed.
Reply

willyolio was starred willyolio was unstarred

Charles Ip
03/20/09

@willyolio: If you had to choose, would you take a Macbook or a same spec-ed Windows machine? That's why Macs were first to fail last year. The person doing windows didn't know about the SP, and he was only 10 minutes away from completing the first day using another crack.
Reply

Charles Ip was starred Charles Ip was unstarred

Lite: hates Illinois Nazis
03/20/09

@JuiceDaddy: Wow... You couldn't lack more of a sense of humor.
Reply

something_unique_and_descriptive
03/20/09

@Charles Ip: That would be why he sold the Mac as soon as he could, exploit intact (meaning he probably didn't use it)...

I've been to the conference in the past, a good 95%+ of the competitors run tweaked to hell and back versions of Linux or BSD.

As for Chrome not falling, my guess is a combination of both. It's design is intrinsically more secure but if Chrome had the market share of IE circa 2000 (like 98% or some ridiculous amount), it would have fallen, no mater the security.
Reply

something_unique_and_descriptive
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
iPhone will be the first to fall, there is so much research being done into exploiting it just to open the phone up it'll be first. Only chance it's got is if it's running 3.0 beta.

Android is a wild card, it's either going to fall shortly after the iPhone or it'll fall last, if at all. The double edged sword of an open OS, all the vulnerabilities are there to see, but since there are no restrictions on what you can do there isn't as much incentive to try and break it.

Symbian, due to it's global market share dominance, will fall second or third, depending on where Android drops.

I'm not sure which will get broken next, WinMo or BB. There's a reason WinMo is the OS on the only NSA approved smartphone, but at the same time BB would not be the success it is in the corporate world if it wasn't secure.
Reply

Gerb
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
No mention of Opera. Phew, I'm safe.
Reply

Gerb was starred Gerb was unstarred

Nick
03/19/09

@Gerb: it's not offered int he competition.
Reply

Nick was starred Nick was unstarred

shenanigans
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
That's kind of embarrassing for Safari. Considering the fact that most of here won't even touch IE with a ten foot pole, and is hated by web developers such as myself to a certain extent. I can't believe it still takes a couple of hours to crack IE & Firefox.

I'm not hating on Apple, but their security by obscurity is catching up to them real fast, and they need to do something about it before they get caught with their pants down.
Reply

shenanigans was starred shenanigans was unstarred

bosskev
03/19/09

@shenanigans: "...before they get caught with their pants down."

Frankly, that describes some of my happiest moments.
Reply

bosskev was starred bosskev was unstarred

GotMex?
03/19/09

@shenanigans: Security by obscurity? How is that related to these exploits...
Reply

GotMex? was starred GotMex? was unstarred

Groz
03/19/09

@GotMex?: In other words, nobody cares enough to try the exploits on the whole six people who use Safari or a Mac. It's secure because the hackers aim for the bigger fish.
Reply

Groz was starred Groz was unstarred

bosskev
03/19/09

@Groz: "...the whole six people who use Safari or a Mac...hackers aim for the bigger fish."

Wow! Lucky for you then, Groz, that they aim for bigger fish, not bigger asshats.

And, no, I don't disparage you just because of this one slightly-trollish comment. I disparage you based on your history of trollish-commenting.
Reply

bosskev was starred bosskev was unstarred

⌘Z
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
10 seconds? it's like a nerdier 3 fast 3 furious.
Reply

⌘Z was starred ⌘Z was unstarred

GitEmSteveDave_HurtHisKnee
03/19/09

@the new face of racial america: You almost hacked me? You never hacked me - you never hacked your cpu... Vista crackin' not Linux crackin' like you should. You're lucky that 3gb shot of RAM didn't blow the welds on the heat sync! You almost hacked me?

Ask any leeter. Any real leeter. It don't matter if you win by an kb or a Gb. Winning's winning.
Reply

jlarroulet
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
On the mobile competition, WinMo will definitely go first, then Symbian, iPhone, Blackberry and Android

I guess I'll move back to Lynx for my web reading then....
Reply

jlarroulet was starred jlarroulet was unstarred

Nick
03/19/09

@jlarroulet: that was dumb. why would you assume that other than to hate on WinMo?
Reply

Nick was starred Nick was unstarred

BrianEsser
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
I'm not scared. I have finallyfast.com backing me up. My computers fast, finally!
Reply

BrianEsser was starred BrianEsser was unstarred

wolfenstein-3d
03/19/09

@BrianEsser: lol, you win
Reply

wolfenstein-3d was starred wolfenstein-3d was unstarred

mrzippy
03/19/09

In reply to Safari Cracked in Seconds at Pwn2Own Hacking Competition
Actually he didn't hack Safari in 10 seconds, he had already laid the groundwork before hand...

All he did was load a website with the exploit in 10 seconds.
Reply

mrzippy was starred mrzippy was unstarred

the_sidewinder
03/19/09

@mrzippy: Well, the exploit ran in under 10 seconds. This is important because some exploits may take longer, or require more user interaction. This under 10 secs thing means to me that as soon as you visit a compromised site, you're screwed
Reply

the_sidewinder was starred the_sidewinder was unstarred

Citizen Kang
03/19/09

@the_sidewinder:

That's pretty much what would happen if I ever met Natalie Portman. 10 seconds after we meet...BOOM...I've been morally compromised.
Reply

Citizen Kang was starred Citizen Kang was unstarred

Troy Stockton
03/19/09

@Citizen Kang: check out natalie portman's rap. I hear she likes to f*uck. It's on the Lonely Island album
Reply

Troy Stockton was starred Troy Stockton was unstarred

Monty
03/19/09

@mrzippy: Not only did they probably spend months learning about the exploits, but they spent years of their lives learning computers and getting various training. You could argue that it took this person twenty some years to hack into this thing, and the hack of IE took twenty some years plus an hour. Not certain that is going to change the perception, however.
Reply

Monty was starred Monty was unstarred

Lite: hates Illinois Nazis
03/19/09

@Troy Stockton: Yeah, all you have to do is tell you that you love her and boom. Too bad that while she's riding you she'll slit your throat and pump nitrous down the hole so that while you laugh you cry, and while she laughs you die.
Reply

Earlier discussions Other discussions Show all discussions Show featured discussions only Start a new discussion

Gizmodo Team

SUBSCRIBE TO Gizmodo

Login

Reset Password

Register

Submit Your Comment