[ad_1]
As a key aspect, the security of systems and applications must be monitored and tested on an ongoing basis. Hence, it is normal for there to be events where hackers challenge themselves and try to break through the security barriers.
The most recent of these meetings took place recently in China and this time, among others, Windows 10, iOS 14, Android, Chrome and Safari fall into the hands of hackers. This proves, once again, that no system is fully protected.
New hacker event to exploit flaws
It was in the city of Chengdu, China that the third version of the TianfuCup event took place. This is a competition where hacker teams have successfully attacked known applications or operating systems, such as Windows 10, Firefox, Chrome, or iOS 14.
This year, once again, the systems that are on the market and available to everyone have been attacked. The basic rule was to use new vulnerabilities, which had not yet been revealed and as such were not known to anyone.
TFC 2020 has come to an end, all these excellent offensive researchers and their burning 0 days do #TFC 2020 a success! Thank you all for participating and following! 🥳🥳🥳 pic.twitter.com/MwJLc5M0B4
- TianfuCup (@TianfuCup) November 8, 2020
Operating systems and applications fall for these attacks
With only 3 attempts, of 5 minutes each, to carry out their attack, each of the 15 participating teams had to succeed in breaking the software or operating system to which it was proposed. Of course, many did not resist and ended up in the hands of hackers.
- iOS 14 to current iPhone 11 Pro
- Android a number will run Samsung Galaxy S20
- Windows 10 v2004 (April 2020 edition)
- Ubuntu
- Chrome
- Safari
- Firefox
- Adobe PDF Reader
- Docker (Community Edition)
- VMWare EXSi (hypervisor)
- QEMU (emulator and virtualizer)
- TP-Link and ASUS router firmware
As you can see in the list above, the attacks targeted known and current software and operating systems. Many were primarily considered safe and had protective barriers that prevented any attack or breach of security.
Attractive rewards for hackers
These findings, as usual, produced interesting amounts for the hacker teams who discovered the flaws. With a total prize pool of $ 1.21 million, many have tried their luck to cash in a significant amount.
The big winner this year was the Qihoo 360 team, who managed to raise $ 744,500 in prizes. In the second and third positions were the teams from AntFinancial Lightyear Security Lab and Pang. Interestingly, the Qihoo 360 team had already managed to win in 2019.
Confirmed! $ 180,000 awarded! It is the highest bonus on a single goal of #TFC 2020. 👏 @CodeColorist https://t.co/56c4eEm895
- TianfuCup (@TianfuCup) November 8, 2020
Security breaches were reported immediately
However, all the discoveries made during this hacking event were reported to the responsible companies. The errors should be corrected in the short term and then restore the security of these operating systems and applications.
Once again, it is proven that even systems considered safe have flaws and can be breached by hackers. The idea that these flaws are explored and identified in these events is good because it keeps them in check and can be quickly corrected.
[ad_2]
Source link
