March 21, 2024 at 05:51AM
At Pwn2Own Vancouver 2024, participants earned over $700,000 on the first day by successfully demonstrating exploits against Tesla, Linux, Windows, and software. The Synacktiv team secured $200,000 and a Tesla Model 3 for an exploit targeting a Tesla ECU. Other significant rewards were earned for exploits involving VMware Workstation, Oracle VirtualBox, and various software.
From the meeting notes, here are the key takeaways:
– Participants at the Pwn2Own Vancouver 2024 hacking competition earned over $700,000 on the first day by successfully demonstrating exploits against a Tesla car, Linux and Windows operating systems, and various widely used software.
– The Synacktiv team representing the cybersecurity firm earned $200,000 for an exploit targeting the Tesla electronic control unit (ECU) with CAN bus control, and won a new Tesla Model 3 in addition to the cash prize.
– The team representing Theori received $130,000 for an exploit chain involving VMware Workstation and arbitrary code execution with System privileges on the Windows host.
– Notable rewards were also earned for exploits targeting Oracle VirtualBox, Chrome, Safari, Adobe Reader, and other software.
– A total of 19 unique zero-day vulnerabilities were identified on the first day, with the prize pool for Pwn2Own Vancouver 2024 totaling $1.3 million in cash and prizes, including the Tesla won by the Synacktiv team.
– The second day of the competition will involve hacking attempts on VMware Workstation, Oracle VirtualBox, Firefox, Chrome, Edge, Ubuntu, Windows 11, and Docker Desktop.
Let me know if you need more information or further details.