With some slight changes to Pwn2Own this year, the hacking event is underway with one day completed.
Day One
So far, there have been 6 attempts against the targets, which include VMware Workstation, Google Chrome, Microsoft Edge, Adobe Flash, and Apple Safari. Out of those 6 attempts, 4 have been successful, 1 was partially successful (the exploit was previously reported), and 1 was unsuccessful.
- JungHoon Lee successfully attacked Apple Safari earning 10 Master of Pwn points and $60,000.
- 360Vulcan Team successfully attacked Adobe Flash earning 13 Master of Pwn points and $80,000.
- Tencent Security Team Shield successfully attacked Apple Safari and earned 10 Master of Pwn points and $40,000.
- 360Vulcan Team partially successfully attacked Google Chrome and earned 12 Master of Pwn points and $52,500.
- Tencent Security Team Sniper successfully attacked Adobe Flash earning 13 Master of Pwn points and $50,000.
- Tencent Xuanwu Lab failed in their attempt on Adobe Flash in Microsoft Edge.
In total, $282,500 was paid out in Day 1 of Pwn2Own 2016. The one with the most Master of Pwn points at the end of the contest will receive an additional $25,000.
For more details, you can view the Trend Micro day 1 recap and their video below.
Day Two
Day two of Pwn2Own 2016 saw three teams making five attempts.
- Tencent Security Team Sniper successfully compromised Apple Safari earning 10 Master of Pwn points and $40,000.
- JungHoon Lee succeeded in compromising Microsoft Edge and earned 15 Master of Pwn points and $85,000.
- JungHoon Lee failed in their attempt against Google Chrome.
- Tencent Security Team Shield failed in their attempt on Adobe Flash.
- Tencent Security Team Sniper succeeded in compromising Microsoft Edge and earned 15 Master of Pwn points and $52,500.
For more details, you can view the Trend Micro day 2 recap and their video below.
Summary
Tencent Security Team Sniper earned the first Master of Pwn title. Over $460,000 was awarded for 7 successful attempts with 21 new vulnerabilities reported.
Microsoft Windows: 6
Apple OS X: 5
Adobe Flash: 4
Apple Safari: 3
Microsoft Edge: 2
Google Chrome: 1 (previously reported)
Total: 21