White hat hackers at the Pwn2Own Ireland 2024 contest by Trend Micro’s Zero Day Initiative earned $500,000 on the first day by exploiting NAS devices, cameras, printers, and smart speakers.
Sina Kheirkhah from Summoning Team earned the top reward of $100,000 by exploiting nine vulnerabilities in an attack from a QNAP QHora-322 router to a TrueNAS Mini X storage device.
By infosecbulletin
/ Wednesday , January 22 2025
Fortinet customers must apply the latest updates, as almost 50,000 management interfaces remain vulnerable to the latest zero-day exploit. The...
Read More
By infosecbulletin
/ Tuesday , January 21 2025
Every day a lot of cyberattack happen around the world including ransomware, Malware attack, data breaches, website defacement and so...
Read More
By infosecbulletin
/ Tuesday , January 21 2025
Ubuntu 22.04 LTS users are advised to update their systems right away due to a crucial security patch from Canonical...
Read More
By infosecbulletin
/ Tuesday , January 21 2025
Attackers are pretending to be Ukraine's Computer Emergency Response Team (CERT-UA) using AnyDesk to access target computers. “Unidentified individuals are...
Read More
By infosecbulletin
/ Tuesday , January 21 2025
Oracle Critical Patch Update Pre-Release Announcement shares details about the upcoming update scheduled for January 21, 2025. Note that this...
Read More
By infosecbulletin
/ Tuesday , January 21 2025
OWASP has released its updated list of the top 10 vulnerabilities in smart contracts for 2025. This guide highlights the...
Read More
By infosecbulletin
/ Monday , January 20 2025
Security researchers have found several vulnerabilities in Azure DevOps that could enable attackers to inject CRLF queries and carry out...
Read More
By infosecbulletin
/ Monday , January 20 2025
Intel Corporation is a leading semiconductor chip manufacturer, employing at least 22 graduates from the Department of Applied Chemistry and...
Read More
By infosecbulletin
/ Sunday , January 19 2025
vpnMentor’s Research Team is monitoring the potential TikTok ban in the U.S., driven by national security and data privacy issues....
Read More
By infosecbulletin
/ Saturday , January 18 2025
MITRE launched D3FENDTM 1.0, a cybersecurity framework that provides a vocabulary and understanding of the cyber domain. D3FEND 1.0, funded...
Read More
Viettel Cyber Security demonstrated an exploit chain involving QNAP QHora-322 and TrueNAS Mini X products, earning $50,000.
Jack Dates from RET2 Systems earned a $60,000 reward for hacking a Sonos Era 300 smart speaker.
Two different teams earned $40,000 each for exploiting the QNAP TS-464 and Synology DiskStation DS1823XS+ NAS devices.
Participants successfully exploited the Lorex 2K WiFi, Ubiquity AI Bullet, and Synology TC500 cameras, as well as HP Color LaserJet Pro MFP 3301fdw and Canon imageCLASS MF656Cdw printers, earning hackers between $11,000 and $30,000.
ZDI reported that $516,250 was awarded on the first day of Pwn2Own Ireland for over 50 unique vulnerabilities.
In the coming days, contestants will showcase exploits targeting a Samsung Galaxy S24 phone and an Aeotec Smart Home Hub, along with cameras, NAS devices, smart speakers, and printers.
Pwn2Own Ireland 2024 features a messaging app category, offering up to $300,000 for a zero-click WhatsApp exploit. Up to $250,000 is available for exploits targeting the Pixel 8 and iPhone 15, but no entries have been submitted for these devices.