• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Researchers Find 63 Zero-Day Bugs at Latest Pwn2Own

You are here: Home / General Cyber Security News / Researchers Find 63 Zero-Day Bugs at Latest Pwn2Own
December 12, 2022

Participants at the newest Pwn2Very own competition have finished their little bit to make the digital environment safer, after exploring scores of zero-day vulnerabilities in a selection of goods.

The contest is run by Pattern Micro’s Zero Working day Initiative (ZDI), the world’s greatest vendor-agnostic bug bounty plan.

Held at Development Micro’s offices in Toronto, the 3-working day autumn levels of competition doled out $934,750 to contestants, who labored to hack application from numerous companies throughout numerous types. All informed, 26 contestants and groups tried to exploit 66 focus on products. 

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


This yr represented the tenth anniversary of the shopper-focused version of the levels of competition and showcased a new class focusing on Tiny Place of work Home Office (SOHO) machines.

That’s in recognition of the growing danger to systems applied by home staff, which might stand for an appealing route by way of which destructive actors can compromise company networks.

“We awarded a different $55,000 these days bringing our contest overall to $989,750. About the contest, we ordered 63 exceptional zero days,” reported the ZDI’s Dustin Childs at the conclusion of the closing day.

“The Learn of Pwn title came down to the wire, but the group from DEVCORE claimed their 2nd title with winnings of $142,500 and 18.5 points. Crew Viettel and the NCC team ended up shut at the rear of with 16.5 and 15.5 details respectively. Congratulations to all the contestants and Pwn2Individual winners.”

Among the the sellers whose solutions had been hacked by contestants were HP, Mikrotik, Sonos, TP-Connection, Ubiquiti, Western Digital, Lexmark and Netgear.

Some of the products focused included printers, routers, good speakers, NAS devices and smartphones, these kinds of as the Samsung Galaxy S22.

Dozens of teams competed from all over the environment each in-person and remotely.

The distributors of hacked products will now have 120 days to patch the 63 zero-days located in their choices right before they are publicly disclosed by the ZDI.


Some parts of this article are sourced from:
www.infosecurity-magazine.com

Previous Post: «royal ransomware threat takes aim at u.s. healthcare system Royal Ransomware Threat Takes Aim at U.S. Healthcare System
Next Post: North Korean Hackers Impersonate Researchers to Steal Intel Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors
  • Top 10 Best Practices for Effective Data Protection
  • Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks
  • Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks
  • [Webinar] From Code to Cloud to SOC: Learn a Smarter Way to Defend Modern Applications
  • Meta to Train AI on E.U. User Data From May 27 Without Consent; Noyb Threatens Lawsuit
  • Coinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt Fails
  • Pen Testing for Compliance Only? It’s Time to Change Your Approach
  • 5 BCDR Essentials for Effective Ransomware Defense
  • Russia-Linked APT28 Exploited MDaemon Zero-Day to Hack Government Webmail Servers

Copyright © TheCyberSecurity.News, All Rights Reserved.