Linked by Thom Holwerda on Thu 19th Mar 2009 06:44 UTC, submitted by Moulinneuf
Privacy, Security, Encryption As he had already predicted, cracker Charlie Miller has won the PWN2OWN contest by cracking Safari and Mac OS X within seconds of the start of the competition. "It took a couple of seconds. They clicked on the link and I took control of the machine," Miller said after his accomplishment. He took home the USD 10000 prize, as well as the MacBook he performed the exploit on. Internet Explorer 8 fell a while later by cracker Nils, who also cracked Safari and Firefox after being done with IE8.
Thread beginning with comment 353998
To read all comments associated with this story, please click here.
Frustrating
by Evan on Thu 19th Mar 2009 21:06 UTC
Evan
Member since:
2006-01-18

It really strikes me as odd that by 2009 we still have links that can render computers completely in the control of a black hat an his botnet.

Is there something fundamental about rendering html and javascript, or is it just that browsers are an easier vector to attack since your user will be requesting data as opposed to a hacker actively port scanning and abusing poorly firewalled systems?

I'd really like to be enlightened on this further as this is far too frustrating.

Reading about man in the middle attacks and online banking sites that don't update their certificates, to something like this basically makes me fear using the internet more than ever for anything beyond pretending to be someone I'm not and flaming people on forums.

Blah.

Reply Score: 2