« Hacker Disabled Offshore Oil Platform Leak-Detection System | Main | Malware installing rogue DHCP server »

Browsers hacked in seconds in Pwn2Own contest

"Security researcher Charlie Miller held onto a vulnerability for an entire year, before using it on Wednesday to win $5,000 and an Apple laptop at the Pwn2Own contest here at the CanSecWest conference.

Miller — a principal analyst at Independent Security Evaluators — found two flaws in Apple's Safari Web browser more than a year ago and prepped the easier-to-exploit issue for last year's competition, he said. Following an announcement that this year's contest would focus on browsers as well as mobile devices, Miller more fully researched the leftover security flaw and found that it remained exploitable.

"I found this bug ... last year, but like all good researchers, I sat on the issue," he said after being declared the first winner."

Read more: http://www.securityfocus.com/news/11549


Feed You can follow this conversation by subscribing to the comment feed for this post.

All Comments are Moderated and will be delayed!