During the first day of the Pwn2Own Ireland 2025 hacking contest by Trend Micro’s Zero Day Initiative, participants earned $522,500 for their exploits. 34 new vulnerabilities have been used to hack printers, NAS devices, routers, and smart home products.
The top prize of $100,000 was given in the ‘SOHO Smashup’ category, which involves exploits on two device types. Researchers linked exploits for the QNAP Qhora-322 router and the QNAP TS-453E NAS device.
By infosecbulletin
/ Friday , July 10 2026
A major AWS attack shows how attackers with AI can connect known cloud strategies to go from first access to...
Read More
By infosecbulletin
/ Thursday , July 9 2026
A new cybercrime ad is catching attention in the security world. It talks about a botnet that doesn't just get...
Read More
By infosecbulletin
/ Wednesday , July 8 2026
CrowdStrike has shared five new ways to inject prompts, showing the rising danger to AI agents as more organizations use...
Read More
By infosecbulletin
/ Wednesday , July 8 2026
A critical flaw in Google Cloud Platform’s Dialogflow CX lets attackers add harmful code to a company's AI chatbot system....
Read More
By infosecbulletin
/ Wednesday , July 8 2026
CIRT identified 153 publicly exposed FortiGate devices in Bangladesh. In an advisory CIRT said, the campaign has been observed globally,...
Read More
By infosecbulletin
/ Wednesday , July 8 2026
Thousands of Model Context Protocol (MCP) servers have serious security flaws like file access issues, command injection, server-side request forgery...
Read More
By infosecbulletin
/ Tuesday , July 7 2026
Several Tenda firmware versions have a hidden backdoor that lets people gain admin access to the device's web interface. An...
Read More
By infosecbulletin
/ Monday , July 6 2026
Cyberattacks are rising around the world, including ransomware, malware, data leaks, and hacked websites. These events show how complex and...
Read More
By infosecbulletin
/ Monday , July 6 2026
A new Linux flaw called “Bad Epoll” (CVE-2026-46242) lets regular users get root access on Linux servers, desktops, and Android...
Read More
By infosecbulletin
/ Sunday , July 5 2026
Security experts found what they think is the first time an AI carried out a cyber attack all by itself....
Read More
Another significant reward, $50,000, was paid out for a Synology ActiveProtect Appliance DP320 exploit. The same amount was also earned for a Sonos Era 300 smart speaker hack. Other NAS device exploits, targeting Synology and QNAP products, earned researchers $40,000 each.
ZDI awarded $40,000, $20,000, and $12,500 for vulnerabilities in the Home Assistant Green device. Exploits on the Philips Hue Bridge earned $40,000 and $20,000. Hacking Canon and HP printers earned researchers $20,000 and $10,000.
Pwn2Own Ireland 2025 will run until Thursday, when a researcher will show a zero-click exploit for WhatsApp to try to win $1 million.
Over $1 million was awarded at Pwn2Own Ireland 2024 for exploits in cameras, printers, NAS devices, smart speakers, and smartphones.