|Home » Industry Watch (» The Technological » Hall of Monkeys » Heroes Banquet)
Two Minute Toast
It was first. It was fast.
VANCOUVER (Rixstep) -- Those NSA hackers sure know their stuff. Famous iPhone hacker Charlie Miller needed all of two minutes to 'pwn' an Apple MacBook Air laptop at CanSecWest yesterday. And in so doing cashed in on the $10 K in prize money.
Thinnovation → Pwnnovation!
Following a recurring trend the first day's efforts - to break into a box over a network - yielded nothing. On the second day with the relaxed rules Charlie quickly set up a remote site he had the organisers visit.
Beat Them All!
The MacBook Air was pitted against Microsoft V*STA and Ubuntu. And beat both. At the end of the day neither of the two other systems had been hacked.
Preinstalled Software Only!
Contestants were only allowed to use preinstalled software; TippingPoint reveal Charlie Miller and ISE colleagues Jake Honoroff and Mark Daniel once again (as with the iPhone) took advantage of a security hole in Apple's 'world's fastest' Safari browser.
Not good news for a company trying to get plagued Windows users to try their 'software'.
Charlie's hack is covered by an NDA but at the end of the day, MacBook Air owners: you're vulnerable.
CanSecWest: Vancouver 2008
Independent Security Evaluators
TippingPoint: Zero Day Initiative
Industry Watch: The Zero Day Scorecard
DVLabs: PWN to OWN Day Two: First Winner Emerges!
Gone in 2 Minutes - Mac Gets Hacked First in Contest
Yahoo Tech Security: MacBook Air Hacked in Two Minutes
Yahoo Tech Security: Apple's 'Safari' into Malware Territory
Washington Post: Gone in 2 Minutes - Mac Gets Hacked First in Contest