The eighteenth annual CanSecWest security conference is underway in downtown Vancouver, Canada, where researchers are competing in the 11th Pwn2Own computer hacking contest for over $2 million in prizes.

Day one results have already been published over at the Zero Day Initiative website, with a couple of successful Mac-related exploits already appearing in the list of achievements.

IMG 0994


Samuel Groß of phoenhex returned to Pwn2Own to successfully hack Apple's desktop Safari browser. Groß used a JIT optimization bug in Safari, a macOS logic bug, and a kernel overwrite to execute code to successfully exploit the browser, earning himself $65,000 and six points towards Master of Pwn. The exploit also caused a text-based message to appear on a MacBook Pro's Touch Bar.

The achievement harks back to Groß's similar success at last year's event, where he targeted Safari with an escalation to root on macOS that allowed him and Niklas Baumstark to scroll a message on a MacBook Pro Touch Bar, earning them $28,000.

Another Safari exploit at Pwn2Own 2018 was initiated by Richard Zhu, who managed to bypass iPhone 7 security protocols with the help of two Safari bugs at November's Pwn2Own mobile event. However, this time Zhu failed to get his exploit chain working within the allotted 30-minute time limit.

IMG 0955

Richard Zhu at Pwn2Own 2018 (Image via ZDI)

Unfazed, Zhu returned to wow the crowd with a Microsoft Edge exploit that used two use-after-free (UAF) bugs in the browser and an integer overflow in the kernel to successfully run his code with elevated privileges. The dramatic effort against the ticking clock earned him $70,000 and seven points towards Master of Pwn.

Apple representatives have attended the Pwn2Own contest in the past, and affected parties are made aware of all security vulnerabilities discovered during the contest so that they can be patched in future software updates.

The participating teams earned a total of $162,000 in prizes on day one, and the event resulted in three Apple bugs, two Oracle bugs, and three Microsoft bugs. Pwn2Own day two begins today at 10:00 a.m. Pacific and will involve additional exploit attempts against macOS and Safari.

Update: On Pwn2Own Day 2, MWR Labs, a team consisting of Alex Plaskett, Georgi Geshev, and Fabi Beterke successfully used two Safari vulnerabilities to execute a sandbox escape. For the feat, they earned $55,000 and 5 Master of Pwn points.

In a separate attempt, Markus Gaasedelen, Nick Burnett, Patrick Biernat of Ret2 Systems, Inc. tried to target Safari using an elevation of privileges kernel exploit, but the team was unable to get the exploit working in the allotted time period.

Tag: Pwn2Own

Top Rated Comments

Kabeyun Avatar
88 months ago
Excellent. Bug bounties are great for everyone.
Score: 11 Votes (Like | Disagree)
now i see it Avatar
88 months ago
If guys using a laptop in their bedrooms can hack a Mac & iPhone during their spare time, one can only wonder what the NSA is capable of
Score: 3 Votes (Like | Disagree)
DrJohnnyN Avatar
88 months ago
Nice payday.
Score: 3 Votes (Like | Disagree)
Kabeyun Avatar
88 months ago
If guys using a laptop in their bedrooms can hack a Mac & iPhone during their spare time, one can only wonder what the NSA is capable of
Afaik, they’re hiring the same guys with laptops in their bedrooms.
Score: 2 Votes (Like | Disagree)
DeepIn2U Avatar
88 months ago
Hmph. And some macrumors members don’t understand the love for the TouchBar ;)

If guys using a laptop in their bedrooms can hack a Mac & iPhone during their spare time, one can only wonder what the NSA is capable of
One cannot understand why Apple doesn’t hire these people to work on Apple services and products. I really hope a Pawn team figures out and demonstrates a Siri hack and then Siri gets rapid advancement as a result.

Then again maybe their too busy having fun hacking Alexa:

Random creepy laughs,
Random answering questions or denying tasks in quite bedroom at 3AM,
Executing commands nobody in hearing range ever gave.

Yeah not in any need for a connected smart speaker. I already have insomnia I don’t need schizophrenia induced trauma to go along with it lol.
Score: 2 Votes (Like | Disagree)
SecuritySteve Avatar
88 months ago
Give me one good reason why do they need contests when each of them can report their hacking individually and earn more?
This entire "contest" is an illusion. The exploits that they are showing are not discovered on the spot, they are the product of months of research and development. However this dramatic fashion of unveiling them gives the researchers fame and publicity, and forces the vendor to acknowledge and fix the vulnerabilities rather than privately kicking the can down the road for potentially a year at a time.
Score: 2 Votes (Like | Disagree)

Popular Stories

Generic iOS 18

Apple Announces iOS 18.2 Launching Today With These New Features

Wednesday December 11, 2024 5:23 am PST by
Apple has announced that iOS 18.2, iPadOS 18.2, and macOS Sequoia 15.2 will be released today following more than six weeks of beta testing. For the iPhone 15 Pro and iPhone 16 models, the update introduces additional Apple Intelligence features, including Genmoji for creating custom emoji, Image Playground and Image Wand for generating images, and ChatGPT integration for Siri. There is also ...
Generic iOS 18

Apple Seeds Second Release Candidate Versions of iOS 18.2 and More With Genmoji, Image Playground and ChatGPT Integration

Monday December 9, 2024 10:06 am PST by
Apple today seeded the second release candidate versions of upcoming iOS 18.2, iPadOS 18.2, and macOS 15.2 updates to developers and public beta testers for testing purposes, a week after releasing the first RCs. The first iOS 18.2 RC had a build number of 22C150, while the second RC's build number is 22C151. Release candidates represent the final version of beta software that's expected to see a ...
iPhone SE 4 Single Camera Thumb 3

iPhone SE 4 Said to Feature 48MP Rear Lens, 12MP TrueDepth Camera

Monday December 9, 2024 4:48 am PST by
Apple's forthcoming iPhone SE 4 will feature a single 48-megapixel rear camera and a 12-megapixel TrueDepth camera on the front, according to details revealed in a new Korean supply chain report. ET News reports that Korea-based LG Innotek is the main supplier of the front and rear camera modules for the more budget-friendly ~$400 device, which is expected to launch in the first quarter of...
Apple MacBook Pro M4 hero

MacBook Pros With OLED Displays Won't Have a Notch, Roadmap Shows

Monday December 9, 2024 7:36 am PST by
Apple plans to remove the notch from the MacBook Pro in a few years from now, according to a roadmap shared by research firm Omdia. The roadmap shows that 14-inch and 16-inch MacBook Pro models released in 2026 will have a hole-punch camera at the top of the display, instead of a notch. It is unclear if there would simply be a pinhole in the display, or if Apple would expand the iPhone's...
macOS Sequoia Night Feature

Apple Releases macOS Sequoia 15.2 With New Apple Intelligence Features

Wednesday December 11, 2024 10:02 am PST by
Apple today released macOS Sequoia 15.2, the second update to the macOS Sequoia operating system that was released in September. macOS Sequoia 15.2 comes over a month after the release of macOS Sequoia 15.1. Mac users can download the ‌macOS Sequoia‌ update through the Software Update section of System Settings. macOS Sequoia 15.2 adds Image Playground, an app that lets you create...
vipps nfc tap to pay iphone

World's First Apple Pay Alternative for iPhone Launches in Norway

Monday December 9, 2024 1:28 am PST by
Norwegian payment service Vipps has become the world's first company to launch a competing tap-to-pay solution to Apple Pay on iPhone, following Apple's agreement with European regulators to open up its NFC technology to third parties. Starting December 9, Vipps users in Norway can make contactless payments in stores using their iPhones. The service initially supports customers of SpareBank...
New Things Your iPhone Can Do in iOS 18

20 New Things Your iPhone Can Do in iOS 18.2

Friday December 6, 2024 4:42 am PST by
Apple is set to release iOS 18.2 in the second week of December, bringing the second round of Apple Intelligence features to iPhone 15 Pro and iPhone 16 models. This update brings several major advancements to Apple's AI integration, including completely new image generation tools and a range of Visual Intelligence-based enhancements. There are a handful of new non-AI related feature controls...