Click to Skip Ad
Closing in...
  1. Prime Day Deals
    11:01 Deals

    Check these early Prime Day deals with prices so low, it’s like Amazon made a mistak…

  2. Amazon Deals
    07:59 Deals

    10 deals you don’t want to miss on Sunday: Free $25 Amazon credit, $230 Windows 10 l…

  3. Mattress Topper Amazon
    14:44 Deals

    33,000 Amazon shoppers say this mattress topper deserves 5 stars – today it’s…

  4. Best Smart Home Devices 2021
    08:45 Deals

    10 smart home devices on Amazon you’ll wonder how you ever lived without

  5. Kasa Smart Home Sale
    13:22 Deals

    Stop what you’re doing and check out Amazon’s massive Kasa smart home sale

No one is safe: All 4 major web browsers hacked at Pwn2Own

March 23rd, 2015 at 8:55 AM
Pwn2Own web browser

Given the myriad of security mechanisms and technologies tech companies have developed, it’s easy to fall into a sense of complacency and think that what you’re doing is safe from prying eyes.

Truth be told, if skilled attackers really want to see what you’re up to online, there’s not really much you can do to stop them.

Case in point: Last week at the annual Pwn2Own hacking competition, all 4 major browsers were exploited.Safari, Firefox, IE, Google Chrome — none of these browsers can provide safe refuge from hackers.

DON’T MISS: Meet the tweak every Netflix user needs: ‘God mode’

Incredibly, three of the web browsing hacks — IE 11, Chrome, and Safari — were carried out by one extremely skilled individual named Jung Hoon Lee.

Threatpost reports that Lee’s Chrome exploit was the most challenging to pull off.

The story of the day was Korean researcher Jung Hoon Lee, who worked alone under the name lokihardt and earned the single highest payout for an exploit in the competition’s history, a staggering $110,000 in just two minutes.

Using more ht2000 lines of code, Lee was able to take down both stable and beta versions of Chrome by exploiting a buffer overflow race condition in the browser. He then used an info leak and race condition in two Windows kernel drivers to secure SYSTEM access. The standalone Chrome bug fetched Lee $75,000 while the privilege escalation bug scored him another $25,000. To finish it off Google’s Project Zero, as it usually does when Chrome is hacked at the event, paid Lee an extra $10,000.

For more info on all of browser related hacking exploits at Pwn2Own, HP put together this video which is well worth watching.

A life long Mac user and Apple enthusiast, Yoni Heisler has been writing about Apple and the tech industry at large for over 6 years. His writing has appeared in Edible Apple, Network World, MacLife, Macworld UK, and most recently, TUAW. When not writing about and analyzing the latest happenings with Apple, Yoni enjoys catching Improv shows in Chicago, playing soccer, and cultivating new TV show addictions, the most recent examples being The Walking Dead and Broad City.

Popular News