MacBook Hacking Contest Won ($10,000) - MacRumors
Skip to Content

MacBook Hacking Contest Won ($10,000)

by

Macworld reports on a winning "hack" claimed by Shane Macaulay and Dino Dai Zovi for the Hack a Mac contest at CanSecWest this week.

The conference and contest took place between April 18-20th in Vancouver, British Columbia:

CanSecWest organizers will set up the MacBooks with their own access point and all security updates installed, but without additional security software or settings. Attendees will be able to connect to the machines via the access point through Ethernet or Wi-Fi, according to the CanSecWest Web site.

As originally planned, the rules for the hack a mac contest were relaxed on Friday after nobody had won the contest on the previous days. In the relaxed set of rules, a URL was provided that exposed Safari to a "specially-constructed Web page" which allowed the hacker to gain shell access to the MacBook.

The URL opened a blank page but exposed a vulnerability in input handling in Safari, Comeau said. An attacker could use the vulnerability in a number of ways, but Di Zovie used it to open a back door that gave him access to anything on the computer, Comeau said.

According to Matasano, Apple's most recent Security update does not address this specific issue with Safari.

Popular Stories

Apple Event Logo

Apple to Release These 15 New Products Later This Year

Friday June 12, 2026 7:45 am PDT by
Apple's annual WWDC developers conference is drawing to a close, but there is still a lot to look forward to in the second half of the year. Apple is expected to release at least 15 more products later this year. Now that the more intelligent and personal version of Siri has finally arrived in beta, a full two years after Apple first previewed it at WWDC 2024, we should begin to see some new ...
Read Full Article48 comments
iCloud iPhone 17 Pro

iPhone Users Who Pay for iCloud Storage Get Two New Perks on iOS 27

Tuesday June 9, 2026 11:29 am PDT by
If you pay for extra iCloud storage on your iPhone, beyond the 5GB included for free, you might receive two more perks on iOS 27 at no additional cost. First, Apple said there will be daily usage limits for some of the new and enhanced Apple Intelligence features on iOS 27, including image generation. However, the company noted that "increased access" is available with "most" iCloud+ storage ...
Read Full Article
Chase Sapphire Reserve Apple Perk Feature

Chase Sapphire Preferred Card Introduces New Perk for Apple Customers

Monday June 15, 2026 12:07 pm PDT by
Chase this week announced new perks for its Sapphire Preferred credit card, and one of them is a complimentary one-year Apple TV streaming subscription. To get the free year of Apple TV, which typically costs $12.99 per month in the U.S., you must activate the card by December 31, 2026. If you are already subscribed to Apple TV directly through Apple, the complimentary subscription from...
Read Full Article39 comments