News Pwn2Own defeats Firefox, Safari, IE8, and iPhone

Discussion in 'Article Discussion' started by CardJoe, 25 Mar 2010.

  1. CardJoe

    CardJoe Freelance Journalist

    Joined:
    3 Apr 2007
    Posts:
    11,346
    Likes Received:
    316
  2. yuusou

    yuusou Multimodder

    Joined:
    5 Nov 2006
    Posts:
    3,193
    Likes Received:
    1,264
    What OS was Firefox running on?
     
  3. yakyb

    yakyb i hate the person above me

    Joined:
    10 Oct 2006
    Posts:
    2,064
    Likes Received:
    36
    does this mean opera was okay or was there no competition against it?
     
  4. dec

    dec [blank space]

    Joined:
    10 Jan 2009
    Posts:
    323
    Likes Received:
    12
    what about chrome?
     
  5. rickysio

    rickysio N900 | HJE900

    Joined:
    6 Jun 2009
    Posts:
    964
    Likes Received:
    5
    Surprisingly no Opera and Chrome.
     
  6. BentAnat

    BentAnat Software Dev

    Joined:
    26 Jun 2008
    Posts:
    7,230
    Likes Received:
    219
    It doesn't mean much.
    Hackers tend to target popular platforms.
    FF, IE8, Safari are the three most popular browsers.
    Reasons being:
    - IE ships with Windows
    - Safari ships with Mac
    - FF is the most popular 3rd party browser

    Pwn2Own normally focuses on "stock installs" on day one, AFAIK.
    Think about it - why would you bother hacking Opera on a mac, if there's a total of 2 people running that combination worldwide... :/
     
  7. Cupboard

    Cupboard I'm not a modder.

    Joined:
    30 Jan 2007
    Posts:
    2,148
    Likes Received:
    30
    ^^ and I know one of them ;)

    Still, its a pretty good effort. I think the iPhone one is the most interesting -its a pretty locked down phone after all, and from what I hear getting stuff onto it without iTunes is a nightmare.
     
  8. thehippoz

    thehippoz What's a Dremel?

    Joined:
    19 Dec 2008
    Posts:
    5,780
    Likes Received:
    174
    the firefox flaw is interesting =] the others whatever..the devs probably put those backdoors in
     
  9. do_it_anyway

    do_it_anyway Minimodder

    Joined:
    24 Apr 2009
    Posts:
    266
    Likes Received:
    11
    But Apple's don't get viruses, or hacked, or in any way badly treated by the bad guys.
    You don't even need security software for the mighty Apple. Thats why they are so much better than PC's.

    [/sarcasm off]

    LOL!
     
  10. Centy-face

    Centy-face Caw?

    Joined:
    26 Apr 2009
    Posts:
    165
    Likes Received:
    2
    Feel sorry for Apple? HA! That day will never ever come and if it did they would be too far up their own arse to notice anyway.
     
  11. Redbeaver

    Redbeaver The Other Red Meat

    Joined:
    15 Feb 2006
    Posts:
    2,062
    Likes Received:
    36
    memory corruption flaw is interesting? :p

    well if they meant the computer RAM memory, yeah, that'll b interesting lol....

    im most interested at the script that can upload all those iphone media into a remote server all in one swipe.
     
  12. TSR2

    TSR2 What's a Dremel?

    Joined:
    19 Aug 2009
    Posts:
    160
    Likes Received:
    4
    No, the ability to upload the contents of the iPhone is a feature (that you signed up to in the EULA) so Apple can review your data.
    For your own protection.
     
  13. javaman

    javaman May irritate Eyes

    Joined:
    10 May 2009
    Posts:
    4,038
    Likes Received:
    209
    With the number of iphones on the go, they're certainly would be a prime target.

    +1 to do it anyway. Everyone knows Macs are immune.

    Probably got banned from the appstore as a result and guys in turtlenecks will laugh at them for using inferior hardware to hack it with.
     
  14. l3v1ck

    l3v1ck Fueling the world, one oil well at a time.

    Joined:
    23 Apr 2009
    Posts:
    12,956
    Likes Received:
    17
    Would NoScript have stopped the Firefox attack?
     
  15. eddtox

    eddtox Homo Interneticus

    Joined:
    7 Jan 2006
    Posts:
    1,296
    Likes Received:
    15
    +1 to do it anyway for getting there before me. Next time I hear someone say that macs are bulletproof I intend to slap them and point them to the article. Not that I think that other os's are. I would quite confidently bet that there isn't a single platform in existence which is unhackable and I doubt there ever will be. Paint a big enough target on it and sooner or later it will get hit.
     
  16. brave758

    brave758 Minimodder

    Joined:
    16 Apr 2009
    Posts:
    1,142
    Likes Received:
    29
    Lol mac's have been insecure for a long time and now. That have had virus's for some time as well sorry malware mac's can't get virus's
    Was reading a article the other day saying that with their closed platform now based on intel this makes it even easier yet to exploit.
    This is not a dig at mac users but the mac empire with its head in the sand
     
  17. Shadow703793

    Shadow703793 What's a Dremel?

    Joined:
    5 May 2009
    Posts:
    331
    Likes Received:
    5
    I wondered this too. Until there is more info on the attack it's impossible to tell. Fire Fox + AdblockPlus + Noscript works quite well. I do hope the next version of FireFox will have a sandbox similar or better than Chrome's current implementation.
     
  18. rollo

    rollo Modder

    Joined:
    16 May 2008
    Posts:
    7,887
    Likes Received:
    131
    macs arnt bulletproof but theres so few world wide that viruses never target them. Its the old needle in ahaystack thing. Why target 10million macs when you can target a few hunderd million windows users

    not sure on exact figures

    if you make a virus you target the biggest market not the smallest unless your just wanting to hack macs
     
  19. RichCreedy

    RichCreedy Hey What Who

    Joined:
    24 Apr 2009
    Posts:
    4,698
    Likes Received:
    172
    you found the link i postd on the forums earlier then :)
     
  20. Farfalho

    Farfalho Minimodder

    Joined:
    27 Nov 2009
    Posts:
    427
    Likes Received:
    2
    I like the only difference of a security pro from a hacker is only the name and the payroll, both do the same but one of them is paied a lot more xD

    Good to see such results from day one!
     
Tags: Add Tags

Share This Page