Submit a Story!
Votes
topics:

vote down flag
Questions for Pwn2Own hacker Charlie Miller
blogs.zdnet.com - 3/20/2009
Questions for Pwn2Own hacker Charlie Miller
VANCOUVER, BC — At the CanSecWest security conference here, I got a chance to sit down with Charlie Miller, the researcher who broke into a fully patched MacBook machine using a Safari code execution vulnerability. We discuss the state of Web browser security, the vulnerability marketplace ...
Pwn2Own 2009: Safari/MacBook falls in seconds
blogs.zdnet.com - 3/18/2009
Pwn2Own 2009: Safari/MacBook falls in seconds
blogs.zdnet.com — [ UPDATE: IE 8 and Safari also falls ] VANCOUVER, BC — Charlie Miller has done it... again. For the second consecutive year, the security researcher hacked into a fully patched MacBook computer by exploiting a security vulnerability in ... (more) Pwn2Own 2009: Safari/MacBook falls in seconds

Comments vote down Technology: Technology blog | guardian.co.uk found this 3/18/2009found this
Chrome only browser left standing after day one of Pwn2Own
arstechnica.com - 3/20/2009
Chrome only browser left standing after day one of Pwn2Own
arstechnica.com — Browser vendors often make strong claims about their responsiveness to vulnerability reports and their ability to preemptively... prevent exploits. Security is becoming one of the most significant fronts in the new round of browser wars, but ... (more) Chrome only browser left standing after day one of Pwn2Own

Comments vote down Gizmodo found this 3/20/2009found this
Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari
blogs.zdnet.com - 3/19/2009
Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari
blogs.zdnet.com — VANCOUVER, BC — It took a while longer but Microsoft’s Internet Explorer 8 did not survive the... hacker onslaught at this year’s CanSecWest Pwn2Own contest. [ ALSO SEE: Pwn2Own 2009: Safari/MacBook falls in seconds ] A security ... (more) Pwn2Own trifecta: Hacker exploits IE8, Firefox, Safari

Comments vote down AppleInsider found this 3/19/2009found this

Blog Reactions

ZDNet News - News Page One:  Sniffing keystrokes via laser and keyboard power

GMSV:  Blanket insecurity

Technology: Technology blog | guardian.co.uk:  Macs are easy to hack, but not really worth the effort

More
Comments
Blog Reactions

Sniffing keystrokes via laser and keyboard power
ZDNet News - News Page One — ... - Questions for Pwn2Own hacker Charlie Miller In the second attack method, the researchers were able to spy on the keystrokes of a computer which was using a PS/2 keyboard through a ground line from a power plug in an outlet 50 feet away. "Information leaks to the electric grid," said Barisani. "It can be detected on the power plug, including nearby ones sharing the same electric line" as the victim's computer. The researchers used a digital oscilloscope and analog-digital converter, as well as filtering technology to isolate the victim's keystroke pulses from other noise ...

Blanket insecurity
GMSV — ... , the prizes offered by such competitions don’t exactly encourage the public-spirited sharing of newly discovered vulnerabilities with software makers. Miller said he’d found two ways to exploit Safari in 2008, using one to win last year’s contest and sitting quietly on the other until he could pick up another $5,000 prize this year. “I never give up free bugs,” Miller told ZDNet . “I have a new campaign. It’s called NO MORE FREE BUGS. Vulnerabilities have a market value so it makes no sense to work hard to find a bug, write an exploit and then give it away. Apple pays people ...

Macs are easy to hack, but not really worth the effort
Technology: Technology blog | guardian.co.uk — ... ) at CanSecWest, and has blogged their fascinating conversation in Questions for Pwn2Own hacker Charlie Miller. Turns out he already knew this year's Safari vulnerability before last year's Pwn2Own contest but didn't need to use it. However, he didn't report it to Apple. He says: ...

“NO MORE FREE BUGS,” says Pwn2Own hacker, Charlie Miller
D' Technology Weblog — ... reporting the vulnerability to Apple?” He is very honest about this, and says: I never give up free bugs. I have a new campaign. It’s called NO MORE FREE BUGS. There’s a market for exploits. “Vulnerabilities have a market value so it makes no sense to work hard to find a bug, write an exploit and then give it away,” Miller explains, “Apple pays people to do the same job so we know there’s value to this work.” Full Interveiw ...

Google's Chrome Untouchable At Security Conference
WebProNews Feed — ... But the bigger news is the insight Charlie Miller, a security researcher for Independent Security Evaluators who cracked a fully patched MacBook Air through Safari, gave ZDNet in an interview. Miller labeled Mac OS as the easiest of the bunch to exploit while naming Firefox on Windows machines one of the most difficult, and Chrome as almost impossible. ...

Related Content
The Pwn2Own trifecta: Safari, IE 8, and Firefox exploited on day 1
engadget.com 3/25/2009 — That didn't take long. One day into the Pwn2Own hacking competition at CanSecWest and already Apple, Microsoft, and Mozilla have been sent packing to their respective labs to work on security issues in their browsers. In a repeat performance, ...
NEWS: Safari hacked within seconds at Pwn2Own contest
pocket-lint.com 3/19/2009 — IE8 and Firefox cracked soon after In just day one of the annual Pwn2Own hacking competition, IE8 and Firefox were cracked within a matter of hours, and Safari floored within seconds. ... Read Safari hacked within seconds at Pwn2Own contest ...
Analysis: Safari 4 lifts Apple above 10% browser market share
tgdaily.com 3/2/2009 — Analysis – February turned out to be the month of the beta browsers, in a more significant way than we have seen in any other month before. While overall market shares remained relatively stable for the top 5 of browser developers, there were major ...
DVLabs | Pwn2Own 2009 Day 1 - Safari, Internet Explorer, and Firefox Taken Down by Four Zero-Day Exploits
dvlabs.tippingpoint.com 3/19/2009 — The 3rd annual Pwn2Own contest kicked off today at CanSecWest around 3:00pm PST. For the first time, we had so many people register for the contest that we had to draw names from a hat- literally! In typical techie format, Aaron wanted to take a ...
New Safari Browser Succeeds at Speed, Flops on Features
ptech.allthingsd.com 3/5/2009 — Apple’s Safari browser has always been speedy and has introduced its share of innovations. While it is mostly used on Apple’s own Macintosh computers, with which it is bundled, Safari also comes in a Windows version and it is the browser ...
Welcome to Safari 4 - Apple Inc.
apple.com 2/25/2009 — Welcome to Safari 4 - Apple Inc.
Safari successfully exploited in seconds in Pwn2Own contest
arstechnica.com 3/20/2009 — Putting his money where his mouth is, so to speak, security reseacher Charlie Miller exploited Safari in mere seconds to take control of a test MacBook in the Pwn2Own contest held during the CanSecWest security conference. In fact, he did ...
Apple Heats Up The Browser Wars
forbes.com 2/25/2009 — Just when you thought the browser wars couldn't get any weirder, here comes Steve Jobs rumbling onto the scene like the Stay Puft Marshmallow man tromping over buildings in downtown Manhattan. If last year's release of Safari for Windows seemed like ...
Apple Releases Safari 4 Beta: Faster, Prettier, and Easier to Use
readwriteweb.com 2/24/2009 — Apple today released the first public beta of Safari 4 , which sports a redesigned interface that resembles Google's Chrome, as well as support for all of the major Internet standards, and a large range of new and enhanced features. Among these new ...
Review: Apple Part I: Safari 4 first look: something borrowed
macnn.com 2/24/2009 — Apple's release of a public beta for Safari 4 is the company's first truly major attempt to compete in the web browser space since, arguably, Safari 2. But while it incorporates several new features that are absolutely crucial to its acceptance as a ...
A grim day for browser security at hacker contestThe Register 3/19/2009
Safari, IE and Firefox all down for the count CaanSecWest   Internet browser security took a beating during Day 1 of an annual hacking competition, with Apple's Safari, Microsoft's Internet Explorer and Mozilla's Firefox all being felled in a ...
Pwn2Own compromises Safari, IE8 and FirefoxTechradar - All the latest technology news 3/19/2009
The much-vaunted Pwn2Own contest in Vancouver saw Safari fall in seconds, Internet Explorer taken out and a zero-day exploit in Firefox make it an unhappy day for three of computing's big guns. The contest sees hackers try to win prizes by hacking ...
As Predicted, Safari First to Fall in Pwn2Own Hacking ContestMaximum PC all RSS Feed 3/19/2009
It was a year ago that security researcher Charlie Miller walked away with $10,000 for hacking into a MacBook Air with Safari in just two minutes during the annual Pwn2Own competition, and earlier this month Miller predicted Safari would be the ...
Hands-on IE 8: A giant step for MicrosoftCNET News.com 3/20/2009
Internet Explorer 8 takes another large leap forward for the world's most-used browser, but is it enough to make devoted Firefox, Chrome, and Safari fans switch?
Safari 4 beta tweaksLatest from Computerworld 3/20/2009
In this, the 100th installment of the Macworld Video, I take a look at some tab tweaks for the Safari 4 beta--specifically, how to move the tab bar back below the bookmarks bar. And for those who prefer the new top tabs, I show you how to use color to ...