العودة   منتديات عميد التعريب > عمادة Universal الكونية > English News Topics

الملاحظات

English News Topics مواضيع و أخبار عالمية متفرقة باللغة الإنجليزية Various international topics and news in English



 
 
أدوات الموضوع انواع عرض الموضوع

قديم 2020-03-23, 08:21 PM   رقم المشاركة :1
معلومات العضو
عميد
macOS, Windows 10 and Ubuntu Hacked at Pwn2Own 2020
إحصائية العضو





معدل تقييم المستوى: 11
Zez is on a distinguished road
المنتدى : English News Topics
Icon (6) macOS, Windows 10 and Ubuntu Hacked at Pwn2Own 2020


macOS, Windows Ubuntu Hacked Pwn2Own Pwn2Own-740x416.jpg



macOS, Windows 10 and Ubuntu were some of the software that fell to exploits on day 1 of Pwn2Own 2020. A total of $180,000 was up for grabs for 9 bugs in 3 categories, and hackers were able to defeat the security mechanisms in three of the most popular desktop operating systems out there.

Due to coronavirus, the annual Pwn2Own event was held virtually, instead of in Vancouver, Canada. The hackers had prepared exploits in advance and sent them to organizers to demonstrate in a live presentation to all participants.

Apple’s desktop operating system was targeted through a vulnerability in Safari with a macOS kernel escalation of privilege. The winners were Georgie Tech Systems Software & Security Lab who won $70,000 for their successful exploit, which consisted of six bugs. The team also managed to disable System Integrity Protection on the Mac to show that kernel-level code access execution was acquired.

windows 10 was Hacked by Flourescence, a Pwn2Own veteran who used his use-after-free (UAF) bug to gain escalated system privileges in Windows. He won $40,000 for this successful exploit.

Ubuntu was hacked by RedRocket CTF team, with a local privilege escalation (LPE) exploit. An improper input validation bug in Ubuntu’s kernel was exploited to gain root access. The successful exploit received $30,000.

Lastly, on day 1, Fluoroacetate used another use-after-free bug in Windows 10 to gain system access from a standard user account. This bug was different than the one used by Flourescence. Fluoroacetate received $40,000 for the exploit



On day 2, VirtualBox, Adobe Reader on Windows, and VMWare Workstation were hacked by various teams. While the teams behind exploits for VirtualBox and Adobe Reader won $40,000 and $50,000, respectively, the team behind VMWare Workstation hack was unable to demonstrate their exploit in the allotted time. The organizers later confirmed that the bug was valid.

All the companies behind these operating systems and software were provided details of the exploits to help them fix the bugs in future updates. The companies are given 90 days to develop security patches. After this time has passed, the bugs are made public.

Somehow, neither Android nor iOS were part of any successful exploits this year, which is good news for users. However, as the Pwn2Own exploits show, no platform is 100% safe so it is advised that you follow best practices to keep your data secure.

الموضوع macOS, Windows 10 and Ubuntu Hacked at Pwn2Own 2020 by Imran Hussain ظهر أيضا على المصدر.




Zez غير متواجد حالياً  

 

مواقع النشر (المفضلة)

الكلمات الدلالية (Tags)
macOS , Windows , 10 , and , Ubuntu , Hacked , at , Pwn2Own , 2020 , windows

أدوات الموضوع
انواع عرض الموضوع

تعليمات المشاركة
لا تستطيع إضافة مواضيع جديدة
لا تستطيع الرد على المواضيع
لا تستطيع إرفاق ملفات
لا تستطيع تعديل مشاركاتك

BB code is متاحة
كود [IMG] متاحة
كود HTML متاحة

الانتقال السريع


الساعة الآن 09:11 PM


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2020, vBulletin Solutions Inc.
Search Engine Optimisation provided by DragonByte SEO (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
منتديات عميد التعريب 2010 - 2020