MacNN Forums (http://forums.macnn.com/)
-   Tech News (http://forums.macnn.com/tech-news/)
-   -   Chrome OS endures exploit contest, Chrome browser fails (http://forums.macnn.com/113/tech-news/498753/chrome-os-endures-exploit-contest-chrome/)

 
NewsPoster Mar 10, 2013 10:30 PM
Chrome OS endures exploit contest, Chrome browser fails
Google's Chrome OS managed to evade all intrusion attempts during the most recent <a href="http://macnn.com/rd/280704==http://www.chromium.org/Home/chromium-security/pwnium-3" rel='nofollow'>Pwnium</a> hacking competition. While Chrome OS survived intact, Chrome the web browser joined Firefox and Internet Explorer in being shown vulnerable to attack from hackers, during the <a href="http://macnn.com/rd/280705==http://www.electronista.com/articles/12/01/24/pwn2own.will.not.allow.pre.made.exploits/" rel='nofollow'>Pwn2Own</a> contest held at the <a href="http://macnn.com/rd/280706==http://cansecwest.com/" rel='nofollow'>CanSecWest</a> security conference at the same time. <br />
<br />
In the Pwnium contest, exploits needed to be demonstrated on a fully-patched Samsung Series 5 550. Though no-one managed to complete a hack, one entry is being evaluated by judges according <a href="http://macnn.com/rd/280707==http://www.geek.com/articles/geek-pick/all-chrome-os-hack-attempts-fail-at-pwnium-3-2013038/" rel='nofollow' target="_self" title="">to</a> <em>Geek.com</em>, and may still give the submitter a partial credit. Hackers had a maximum prize fund of $3,141,590 to play for, with two main awards for each hack of a specific difficulty, at $110,000 and $150,000. A previous <a href="http://macnn.com/rd/280708==http://www.electronista.com/articles/12/10/10/security.contest.rewards.hacker.with.cash.chromebo ok/" rel='nofollow' target="_self" title="">Pwnium contest</a> saw hacker "Pinkie Pie" earn a free Chromebook and $60,000, the highest reward level at the time.

During the far more successful Pwn2Own competition, Nils of MWR Labs received $100,000 for a Chrome vulnerability. VUPEN received $60,000 for a Firefox exploit and $100,000 for Internet Explorer 10, followed by an additional $20,000 for a Java exploit. Two other researchers claimed $20,000 each for more Java exploits, <a href="http://macnn.com/rd/280709==http://www.esecurityplanet.com/browser-security/chrome-firefox-and-ie-fall-at-pwn2own-2013.html" rel='nofollow' target="_self" title="">reports</a> <em>eSecurity Planet</em>.

HP placed a bounty of $75,000 for any exploits on Safari running on OS X Mountain Lion, but did not receive any pre-registrations. HP's manager of vulnerability research Brian Gorenc did not know why everyone avoided Safari, suggesting "maybe they were focused on Chrome."
 
cashxx Mar 11, 2013 01:12 AM
Cause no one buys them
I would say because no one buys them... Alot of those guys have exploits planned out before they get there for web browsers. Sounds like they didn't have anything planned out for Google ChromeOS.
 
All times are GMT -4. The time now is 12:27 PM.

Copyright © 2005-2007 MacNN. All rights reserved.
Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2016, vBulletin Solutions, Inc.


Content Relevant URLs by vBSEO 3.3.2