Pwn2Own 2019 Day 3 – Hackers focused their efforts on car hacking, two teams participated in the competitions but only one of them reached the goal.
The security experts Amat Cama and Richard Zhu of team Fluoroacetate, earned $35,000 for their exploit, along with the Tesla they hacked. The white hat hackers managed to display a message on the car’s web browser by exploiting a just-in-time (JIT) issue in the renderer component.
This was the first time that the competition had an automotive hacking session. The organizations offered the highest rewards for exploits for modem or tuner, Wi-Fi or Bluetooth, key fobs, and the autopilot.
There was a reward, up to $250,000, for hacking the gateway, autopilot or security system.
“After a few minutes of setup, and with many cameras rolling, they successfully demonstrated their research on the Model 3 internet browser. They used a JIT bug in the
The Pwn2Own Vancouver 2019 awarded a total of $545,000 for 19 unique bugs in Apple Safari, Microsoft Edge and Windows, VMware Workstation, Mozilla Firefox, and the Tesla infotainment system.
All the vulnerabilities exploited at Pwn2Own 2019 have been already reported to vendors, the organization will give them 90 days before their public disclosure.
If you are interested in news about the other days of the competition give a look here:
(SecurityAffairs – Pwn2Own 2019, hacking)
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.