$10,000 Mac hack bounty not yet claimed
Update: One of the two targets has been compromised.How do you spice up a security conference in lovely Vancouver, BC with a sense of risk, reward and fun? If you're the organizers of CanSecWest, you offer a prize to anyone who can work an exploit on two MacBook Pro machines; said prize, originally just the laptops themselves, is now a cool $10,000 thanks to sponsor & security appliance vendor TippingPoint. Both machines are freshly patched with Thursday's security updates.
As of earlier today, ZDnet blogger Ryan Naraine reports that nobody has claimed the bounty, and conference organizers have moved to the scheduled phase II plan; challengers, who originally had to attack the machine remotely over the network, now may send URLs to the judges and have them opened in Safari. Happy hunting!
graphic: Sebastiaan de With
[via MacDailyNews]
Share
Categories
Update: One of the two targets has been compromised.How do you spice up a security conference in lovely Vancouver, BC with a sense of risk,...
Add a Comment
@4:
"clientside exploit to bind a remotely-accessible shell on the fully-patched"
Hmm remoteley accessible shelll. id say thats pretty vulnerable assuming hes got admin level rights which i assume he does givent that was part of the parmaters of the contest.
The question i have is was this an exploit that requires Safari to open known files upon download or something that cant be circumvented by a simple preference change.
just a malicious web page? you've got to be kidding. a crack is a crack. i'm sure you'll agree the first time you get rooted by some mere malicious web page.
April 20 2007 at 6:54 PM Report abuse Permalink rate up rate down Replythat "crack" is not a crack, just a malicious web page
April 20 2007 at 6:48 PM Report abuse Permalink rate up rate down Replyoops, make that $10,000 claimed.
http://www.matasano.com/log/806/hot-off-the-matasano-sms-queue-cansec-macbook-challenge-won/
Whoops! Looks cracked now:
http://www.matasano.com/log/806/hot-off-the-matasano-sms-queue-cansec-macbook-challenge-won/
So take that Mr. Gates!
http://www.tuaw.com/2007/02/02/bill-gates-security-guys-break-the-mac-every-single-day/
Hot Apps on TUAW
Deals of the Day
more deals- Verizon Leather Sleeve for Tablets for $4 + free shipping
- Wicked Jaw Breaker Noise-Isolating In-Ear Headphones for $6 + free shipping
- Refurb Apple MacBook Air Laptops: 12" 64GB SSD for $699 + free shipping
- JVC Motion Sensing Clock Radio with Dual iPod Docks for $55 + free shipping
- Apple iPhone Headset with Mic for $4 + $2 s&h
- Refurb Apple iPod nano 8GB MP3 Player for $99 + free shipping, 16GB for $119
Software Updates
more updates- EFI Firmware Update brings Lion Internet Recovery to 2010-model Macs
- OS X Lion 10.7.3 released with Safari 5.1.3, Wi-Fi bug fix
- Aperture updated to 3.2.2, addresses Photo Stream issue
- Apple updates Keynote to address Lion issues
- Google Search app gets new look on iPad
- Apple releases Apple TV Software Update 4.4.3
Featured Stories
more stories
Popular Stories
TUAW (or The Unofficial Apple Weblog) is a website devoted to tips, reviews, news, analysis and opinion on everything Apple.
6 Comments