The annual Pwn2Own hacking contest, held in Vancouver, brought together security researchers from all over the world in an attempt to exploit 21 targets across multiple categories. Organized by Trend Micro’s Zero Day Initiative (ZDI), participants took home more than $1.15 million in prize money.
The 3-day competition bore plenty of fruit, with participants successfully hacking Microsoft Teams, Oracle VirtualBox, Mozilla Firefox, Microsoft Windows 11, Apple Safari, and Ubuntu Desktop on day 1, the Tesla Model 3 Infotainment System on day 2, and Windows 11 and Ubuntu Desktop again on day 3.
The winner of the competition walked away with $40,000 and serious hacking points. More importantly, the companies hacked walked away with plenty of homework to do- and quick! As well as the vulnerabilities discovered by the companies, the 2022 winner also managed to achieve Elevation of Privilege on Microsoft Windows 11.
Patches are expected to be released in the near future for the newly discovered vulnerabilities. Look out for a big release on Microsoft’s Patch Tuesday on Jun 14, 2022, and some emergency updates before that.
Start Getting Value With
Centraleyes for Free
See for yourself how the Centraleyes platform exceeds anything an old GRC
system does and eliminates the need for manual processes and spreadsheets
to give you immediate value and run a full risk assessment in less than 30 days