Wednesday, June 19, 2024

Pwn2Own 2019 – Ethical Hackers Earned $315,000 for Hacking Galaxy S10, Xiaomi Mi9, TP-Link and Netgear WiFi Router

In this first day, Ethical hackers earned $195,000 by exploiting the vulnerabilities that reside in the different products, In the second and final day of Pwn2Own Tokyo 2019, researchers made 6 attempts in various categories and earned $315,000 in total 2 days of this contest.

In the first entry of day 2, Team Fluoroacetate (Amat Cama and Richard Zhu) attempt to exploit the Samsung Galaxy S10 in the mobile category.

“Their rogue base station used a stack overflow to push their file onto the target handset. The successful demonstration earned them $50,000 and 5 Master of Pwn points and this is 3 rd time Samsung handset has been compromised via baseband”

In the next attempt, Fluoroacetate targeted the NETGEAR Nighthawk Smart WiFi Router (R6700) and successfully demonstrate the vulnerability.

In the next attempt, Pedro Ribeiro and Radek Domanski of team Flashback came back to target the WAN port of the TP-Link AC1750 Smart WiFi router.

They successfully exploit the bug using a stack overflow combined with a logic bug to gain code execution on the device that earned them $20,000 and one more points towards Master of Pwn.

In a total of 2 days contest, Team Flashback earned a total of $50,000 for four successful demonstrations.

Pedro Ribeiro of Team Flashback demonstration

Another Team from F-Secure Labs back to attack the WAN interface of the TP-Link AC1750 Smart WiFi router and they successfully demonstrate the combined command injection bug along with some insecure defaults to gain code execution on the device.

They also showed off their LED light skills by having the front of the router play “snake” for us. Style points asides, the successful demonstration earned them $20,000 and one Master of Pwn point.

In the next attempt, F-secure Team targeted the Xiaomi Mi9 handset via the NFC component.

” In order to exfiltrate a photo from the phone, they tapped it to their specially crafted NFC tag. That triggered a cross-site scripted (XSS) bug in the NFC component and sent a picture to a different phone they controlled.”

F-secure Team Final attempt earned them $30,000 and a total of $70,000 that take them to the second place of this contest.

Finally, Fluoroacetate holds the 18.5 points with $195,000 and retained their title of Master of Pwn.

Overall, we awarded more than $315,000 USD total over the two-day contest while purchasing 18 different bugs in the various products. ZDI said.

All the reported bugs in this contest have been notified to the respective vendors, now they have 90 days deadline to patch all these vulnerabilities that affected their products.

The next Pwn2Own event going to be conducted in Miami. Contest registration closes at 5:00 p.m. Eastern Standard Time on January 17th, 2020.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity and Hacking News update.


Latest articles

Singapore Police Arrested Two Individuals Involved in Hacking Android Devices

The Singapore Police Force (SPF) has arrested two men, aged 26 and 47, for...

CISA Conducts First-Ever Tabletop Exercise Focused on AI Cyber Incident Response

On June 13, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) made history by...

Europol Taken Down 13 Websites Linked to Terrorist Operations

Europol and law enforcement agencies from ten countries have taken down 13 websites linked...

New ARM ‘TIKTAG’ Attack Impacts Google Chrome, Linux Systems

Memory corruption lets attackers hijack control flow, execute code, elevate privileges, and leak data.ARM's...

Operation Celestial Force Employing Android And Windows Malware To Attack Indian Users

A Pakistani threat actor group, Cosmic Leopard, has been conducting a multi-year cyber espionage...

Hunt3r Kill3rs Group claims they Infiltrated Schneider Electric Systems in Germany

The notorious cybercriminal group Hunt3r Kill3rs has claimed responsibility for infiltrating Schneider Electric's systems...

Hackers Employing New Techniques To Attack Docker API

Attackers behind Spinning YARN launched a new cryptojacking campaign targeting publicly exposed Docker Engine...
BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles