MacBook Air falls in two minutes at PWN 2 OWN
Summary: The MacBook Air fell in two minutes at the CanSecWest security conference's PWN 2 OWN.According to Infoworld, Charlie Miller won the $10,000 prize.
The MacBook Air fell in two minutes at the CanSecWest security conference's PWN 2 OWN.
According to Infoworld, Charlie Miller won the $10,000 pr
ize. Under the contest rules, organizers offered Sony Vaio, Fujitsu U810, and the MacBook as prizes. On day 1 no one won because they couldn't hack into the laptops with a zero day attack. The MacBook runs OS X 10.5.2. The Vaio runs on Ubuntu 7.10 and the Fujitsu runs on Vista Ultimate. Those two laptops are still standing, but that may be because there's more hacker glory in taking down the MacBook Air.
On Day 2, the rules are relaxed. Two minutes later Miller had his prize. Miller is the researcher behind the first iPhone hack.
Chatter on Twitter indicates that Miller's winning hack was a browser exploit. However, the Zero Day Initiative owns the code so details were sparse.
According to sources at the conference, Miller used an exploit against the Safari browser that ships standard with Mac OS X. Details of the vulnerability and the attack vector are now the property of TippingPoint's ZDI (Zero Day Initiative), the sponsor of the Pwn2Own challenge.
The Zero Day Initiative has confirmed the winner. In a post, ZDI said:
At 12:38pm local time, the team of Charlie Miller, Jake Honoroff, and Mark Daniel from Independent Security Evaluators have successfully compromised the Apple MacBook Air, winning the laptop and $10,000 from TippingPoint's Zero Day Initiative. They were able to exploit a brand new 0day vulnerability in Apple's Safari web browser. Coincidentally, Apple has just started to ship Safari to some Windows machines, with its iTunes update service. The vulnerability has been acquired by the Zero Day Initiative, and has been responsibly disclosed to Apple who is now working on the issue. Until Apple releases a patch for this issue, neither we nor the contestants will be giving out any additional information about the vulnerability.
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
the details
http://dvlabs.tippingpoint.com/blog/2008/03/27/day-two-of-cansecwest-pwn-to-own---we-have-our-first-official-winner-with-picture
Questions
What does it mean that nothing happened until the rules were "relaxed"? Does it mean that there had to be user interaction (like doing something dumb) or did the user have to access a particular web site for the problem to occur? Could this hack cause bad things to propagate from machine to machine without user interaction? Would it allow information on the affected machine to be compromised?
There are hacks and then there are hacks. I realize the winners can't release details, but it seems that the possible consequences of the hack could be made public. If all it could do is cause some silly little message to be put on the screen--like some Mac "hacks" have done--what's the big deal? If there's more to it than that, I think it's important for the general public to know about the consequences that could occur
If anyone knows if this info might be available, I'd like a link, please. Merci.
RE: MacBook Air falls in two minutes at PWN 2 OWN
Oh the agony
in Safari. It doesn't sound like a virus. Details are sparse,
however.
I don't think the news is sad at all. I'm disappointed, but I
understand that humans write software. Humans are not
perfect, therefore, software written by humans is not perfect
and will have potential vulnerabilities. But you knew that. I
hope.
I still don't buy the Mac security through obscurity idea.
Criminals are criminals. They take the easy and sure route
virtually every time to steal what they want. They are not
professional software developers who care about reaching the
widest platform market, as some people erroneously think.
They have no scruples and prey on the weak.
IMO, the people who seem to think Macs are perfect are those
who don't own a Mac. And it gets so tiring hearing that same
line all of the time. We do live in the real world, after all.
security through obscurity
professional software developers who care about reaching the widest platform market") it is misleading. it could be rewritten as "They are SKILLED AMATURE software developers who care about CONTROLLING the widest platform market. As you said "Criminals are criminals. They take the easy and sure route virtually every time to steal what they want." 10000 chances vs 300 chances. You do the math.
Your valuable time formula revisited.
You&rqsuo;re assuming that it takes equal R&D time to figure out how to hack both.
In the past, it was more like 3 weeks to sieze 10,000 vs. 2 <i>months</I> to sieze 300. Why? Because before one could even understand the dissassembly of the Mac OS X system code, one first needed to know how to program a PowerPC chip at the machine language level. Few hackers knew how to do that already. Most concentrated on the far more popular x86 (Intel/AMD).
This was an extra level of security through obscurity, and now it’s gone because Apple switched to the x86 chip. I understand the very valid business, efficiency, and performance reasons for doing so (especially once Intel finally gave up on the hideously flawed Pentium 4 architecture and went to the Core chips which were based on Pentium M which in turn was based on the older but much more efficient Pentium 3 — I seem to recall that the first Intel Macs were the very first Core-powered computers on the open market), but there was a downside, and now we&rsdquo;re seeing it.
Apple has lost a major reason for its seeming invulnerability to malware, and they can never get that back. Even if they switch to some new obscure processor in the future, now lots of x86 hackers have an understanding of the inner workings of the Mac OS X, so learning the new machine language is all that’s needed.
Don't be disappointed
hackers wanted the machine, not because OS X was an easier
target.
I don't think anyone has even tried to hack the other two
laptops; there's no lust factor in the hardware or OS.
Please...
Spare us the usual apologies. It's common knowledge that Apple issues software that has more holes than a giant block of Swiss cheese. QuickTime. iTunes. And yes, Safari.
It would make no difference if the Mac being pwned was a MacMini, iMac, MacBook, MacBook Pro, MacBook Air, or PowerMac--they all come with Safari pre-loaded. It's not the OS, it's not the hardware, it's the software that's being exploited.
well
I'm going to say this for the umpteenth time: The people making viruses are typically not criminals. The users who make worms for identity theft are criminals. Many virus makers don't even intend their virus to be used. It's usually a proof of concept that gets loose. Wikipedia it. Most of them, therefore, are professional coders. They are working on the system they are MOST familiar with, which is, by default, Windows. A recent study showed that of current operating systems (since 2000), Vista had the least exploits (and the most code), Xp was 2nd least, followed by OS X, and then several linux distributions. Obviously, people target windows. If I'm trying to steal people's information, and 90% of users are on Windows, Why On Earth would I write a virus to attack Mac's 6%? Oh yay! I got all 6 mac users who clicked on my virus! Vs the 90 I would get for Windows. Really now. The money to be made is for Windows, because you have more people using it, as well as it is cheaper. If people spend less on something, they are less likely to spend money securing it, so they are more open. There are just too many factors showing that mac does in fact work by Security Through Obscurity.
A Virus is not the same a hack to PWN
viruses.
If it is a computer it runs code so it can be hit by a virus and it more
then likely has security flaws that can be hacked.
What SMART Mac Users claim is that 90% of viruses and hacks are
directed at Win32 operating systems. Which leaves the Mac unaffected
by the specific Win32 viruses that makeup that 90%.
So can a Mac be hacked? of course it can? Is it safer from viruses then
a windows computer? Well at this time yes because the majority of
viruses are still written for windows computers and even if Apples
market share does grow among individual users the target will still be
the enterprise systems and I do not see Microsoft loosing that market
anytime soon. So I won't be smug and say macs can't get a virus they
can
but I can say with full confidence that they are unaffected by Win32
viruses. And that means when the latest windows virus is going
around you can rest easy knowing at least that particular virus will not
effect your Mac. That does not mean you put your head in the sand
and feel a Mac is safe from any attack that is stupid.
a little misleading...
It was also after rule were relaxed, and they couldn't hack it
until they made the Mac go to a certain website he had set
up... boring...
Maybe all it proves is he wanted the Mac really bad?
Not really misleading...
So from the time the guy was allowed to touch the laptop and point the browser somewhere and ATTEMPT an exploit it took 2 minutes.
But he setting up the website took him more than two minutes.
with the exploit. So it took him more than two minutes.
enough with the excuses
Is it hilarious that it was the unbeatable Mac OSX ? - you bet :-)
...
More often than not, a virus is written a long time before it's released. He might not have even written it.
no...
But its no surprise that Safari sucks...
Re: a little misleading...
No matter how you spin this
Maybe, but it also proves that Vista is better. :)
[i]they couldn't hack it until they made the Mac go to a certain website he had set up... boring...[/i]
You realize that you also have to admit they couldn't hack the Vista machine with [b]either[/b] set of rules.
Mac fans have been blathering on for years that it was impossible to run Windows safely yet here is a default Windows machine, unhacked for two days while the OS X machine sits there doing its new hacker owner's bidding. This is actually less about how quickly OS X fell and more about how well Vista performed. It completely shatters all the arguments from any Mac fan who ever even once said that you couldn't run Windows safely. They were wrong, end of story.
Have yet too see you post on a MS or Linux discussion?
Pagan jim
Where's OLE MAN?
he and his
hard carriage
returns are
conveniently
missing
from
this
post?