Samsung Galaxy S22 hacked twice on first day of Pwn2Own Toronto

Pwn2Own Toronto

Contestants have hacked the Samsung Galaxy S22 smartphone twice during the first day of the Pwn2Own Toronto 2022 hacking competition, the 10th edition of the consumer-focused event.

The STAR Labs team was the first exploit results a zero day on Samsung’s flagship device by running their incorrect input validation attack in their third attempt, earning $50,000 and 5 Master of Pwn points.

Another contestant, Chim, too demoed exploit successfully targeting the Samsung Galaxy S22 and being able to execute the correct input validation attack earning $25,000 (50% of the prize for the second round targeting the same device) and 5 Master of Pwn points.

Also Read :  How to block and hide your number on the iPhone

“The first winner in each target will receive a full cash award and tested equipment,” the competition organizers explained.

“For the second and subsequent rounds in each target, all other winners will receive 50% of the prize package, however, they will still earn full Master of Pwn points.”

According to the rules of the contest, in both cases, the Galaxy S22 device runs the latest version of the Android operating system and all available updates are installed.

During the first day of this competition, contestants have successfully demonstrated exploits targeting zero-day bugs in printers and routers from several vendors, including Canon, Mikrotik, NETGEAR, TP-Link, Lexmark, Synology, and HP.

Also Read :  10 Horrible Tech Gadgets From the Last 25 Years That Just Suck

The contest was extended to four days

At Pwn2Own Toronto, security researchers can target cell phones, home automation hubs, printers, wireless routers, network-attached storage, smart speakers, and other devices, all of which are up-to-date and in default configurations.

They can win the highest prize in the mobile phone category, with cash prizes of up to $200,000 for hacking Google Pixel 6 and Apple iPhone 13 smartphones.

Hacking Google and Apple devices can also provide a $50,000 bonus if the exploits run with kernel-level privileges, bringing the maximum award for a single challenge to the amount of $250,000 for a full exploit chain with kernel-level access.

Also Read :  Mobile data not working? 5 ways you can fix the issue

The consumer-focused event Pwn2Own Toronto has been extended to four days (between December 6 and December 8) after 26 teams and contestants have registered to take advantage of 66 targets in all categories.

You can find the full schedule of competition contests here. The full schedule for the first day of Pwn2Own Toronto 2022 and the results for each challenge are listed here.

On the second day of the competition, the Samsung Galaxy S22 will once again be tested by hackers at the vulnerability research firm Interrupt Labs.



Source

Leave a Reply

Your email address will not be published.

Related Articles

Back to top button