Internet Explorer, iPhone, Firefox, and Safari Hacked
The top internet browser’s didn’t have a chance at the Pwn2Own hacker contest Wednesday. Microsoft’s Internet Explorer, Mozilla’s Firefox, Apple’s Safari and iPhone all fell to hackers:
Like dominoes falling in rapid succession, the platforms were felled in the fourth year of the contest, which has come to underscore the alarming insecurity of most internet-facing software. To qualify for the big-money prizes, the exploits had to attack previously undocumented vulnerabilities to expose sensitive system data or allow the remote execution of malicious code.
The exploits were all the more impressive because they bypassed state-of-the-art security mitigations the software makers have spent years implementing in an attempt to harden their wares. That included DEP, or data execution prevention, and ASLR, or address space layout randomization and in the case of the iPhone, code signing to prevent unauthorized applications from running on the device.
All the browsers were compromised on day one of the contest. Read the full story at The Register.