hhhh
Newsletter
Magazine Store
Home

>>

Technology

>>

Cyber security

>>

Team Fluoroacetate Dominated P...

CYBER SECURITY

Team Fluoroacetate Dominated Pwn2Own, Found Zero-Days in Apple iPhone X, Samsung Galaxy S9, and Xiaomi Mi6 Phones

Team Fluoroacetate Dominated Pwn2Own, Found Zero-Days in Apple iPhone X, Samsung Galaxy S9, and Xiaomi Mi6 Phones
The Silicon Review
16 November, 2018

Another day, another flaw! Recently at Pwn2Own 2018, a computer hacking contest held in Tokyo, security researchers have once again demonstrated that even that fully patched mobile devices from popular smartphone manufacturers are at risk from zero-day vulnerabilities.

Pwn2Own 2018 was a two days event (13 Nov and 14 Nov) and many teams of hackers from different parts of the world participated. Across these two days, more than 16 new vulnerabilities were reported and the three major phones that are found to be at risk are Apple iPhone X, Samsung Galaxy S9,and Xiaomi Mi6 phones. Furthermore, the sponsor of the event Trend Micro's Zero Day Initiative (ZDI) awarded the security researchers a total amount of $325,000.

Twosecurity researchers, Richard Zhu and Amat Cama who named their team as Fluoroacetate, won the overall event by demonstrating multiple vulnerabilities. Fluoroacetate managed to demonstrate the first bug in the Xiaomi Mi6 handset and it was an NFC (near-field communications) issue, and that bug earned Fluoroacetate $30,000. Next, the duo found2 vulnerabilities in a fully patched iPhone X over Wi-Fi and earned $60,000 in prize money. Fluoroacetate later targeted another android device and it was the Samsung Galaxy S9. The duo succeeded in this too — they exploited the Samsung Galaxy S9 via a vulnerability in the baseband component of the phone and got awarded $50,000. 

That is not all, Richard and Amat on the 2nd day of the event continued to assault the iPhone X and finally demonstrated another pair of bugs that enabled them to exfiltrate data from the iPhone and this earned them an additional $50,000.

Rounding out the success of Richard and Amat was a flaw the duo discovered in the JavaScript engine of the Xiaomi web browser and that attack earned them $25,000. However, Fluoroacetate didn’t succeed on its final attempt of the contest, where the team targeted the iPhone X in the baseband category.

MOST VIEWED ARTICLES

How To Start A College Essay About Yourself

Pitch Perfect: The Best Soccer Fields and Facilities in the MLS

How Webflow Development Can Revolutionize Your Marketing Strategy

Embracing Digital Transformation in Manufacturing and Inventory Management

EdTech Startups: Transforming Learning with Innovative Solutions

RECOMMENDED NEWS

AI titan Nvidia Chinese auto giants

AI titan Nvidia ramped up the collaboration w..
Interos One-Size-Fits-All Resilience Watchtower™

Interos ended One-Size-Fits-All supply chain ..
Aerospacelab Xona Space’s first navigation satellite

Aerospacelab was appointed to build Xona Spac..
DNX Ventures new Japan funds

DNX Ventures announced final close of new Jap..
Cohort announced for ScreenCraft Works cross-border mentoring programme

Cohort announced for ScreenCraft Works cross-..
U.S. Travel Executive Board Governance Committee

U.S. Travel announced new appointees to Execu..
Axis Bank US Dollar Fixed Deposits

Axis Bank launched digital US Dollar Fixed De..
Dolce&Gabbana first real estate project

Dolce&Gabbana unveiled details of its fir..
GeeTest

TOP NEWS

ASG expanded by opening a London office

Alternus Clean Energy and Acadia Energy partnered to develop 200 MW Microgrid Projects

US Science Agency debuted startup matchmaking program in Taiwan

Dallas’ Welker Properties launched Prophet Homes, aims to raise $100M with new fund

Joint EU-US-Armenia high level meeting happened in support of Armenia's resilience

YOU MAY ALSO LIKE

PUMA Studio announced opening in LA to create products and campaigns

Efficiency Redefined: Driving the Ford Lease Advantage

TotalEnergies expanded its Natural Gas production in Texas

Altice’s Patrick Drahi acquired Sotheby’s Auction House for $3.7 Billion

Mastercard and SAP Concur partnered to revolutionise expense management
GeeTest Protects Your Business From Hacking
ready to Protects Your website, mobile app, and api from bot threats
NOMINATE YOUR COMPANY NOW AND GET 10% OFF