Tesla car hacked at Pwn2Own contest

Tesla car hacked at Pwn2Own contest 1

[youtube https://www.youtube.com/watch?v=cO2ObIbGghw&w=500&h=282]

A team of security researchers has hacked a Tesla Model 3 car on the last day of the Pwn2Own 2019 hacking contest that was held this week in Vancouver, Canada.

Team Fluoroacetate –made up of Amat Cama and Richard Zhu– hacked the Tesla car via its browser. They used a JIT bug in the browser renderer process to execute code on the car’s firmware and show a message on its entertainment system.

As per contest rules announced last fall, the duo now gets to keep the car. Besides keeping the car, they also received a $35,000 reward.

“In the coming days we will release a software update that addresses this research,” a Tesla spokesperson told ZDNet today in regards to the Pwn2Own vulnerability. “We understand that this demonstration took an extraordinary amount of effort and skill, and we thank these researchers for their work to help us continue to ensure our cars are the most secure on the road today.”

Tesla car hackers also won competition

Not coincidentally, Team Fluoroacetate also won the three-day contest after earning 36 “Master of Pwn” points for successful exploits in Apple Safari, Firefox, Microsoft Edge, VMware Workstation, and Windows 10.

The duo earned $375,000 in prize money, of the total of $545,000 awarded during the whole three-day competition.

This is the second Pwn2Own hacking contest Team Fluoroacetate have won, after also ranking first and receiving the “Master of Pwn” trophy at the Pwn2Own Tokyo conference in November 2018.

What is Pwn2Own?

Pwn2Own, organized by Trend Micro’s Zero-Day Initiative team, is considered the top hacking contest for white-hat researchers in the information security (infosec) world.

Security researchers gather at Pwn2Own competitions and demonstrate exploits against a list of pre-defined targets (software). They earn points and money for each successful exploit. All vulnerabilities used in the hacking contest must be new, and they are immediately disclosed to the software vendors.

Over the past few years, many of the companies which had their apps hacked at Pwn2Own are now sponsoring the contest, and have engineers on-site to receive the vulnerability reports from the researchers themselves, sometimes delivering patches within hours.

This year, Mozilla patched Firefox a day after researchers demoed two exploits at Pwn2Own –see v66.0.1 changelog.

Besides Firefox and Tesla’s browser, at this year’s Pwn2Own researchers also exploited vulnerabilities in Apple Safari, Microsoft Edge, VMware Workstation, Oracle Virtualbox, and Windows 10

The video summary for Pwn2Own’s day three is at the top of this article, while summaries for the first two days are embedded below.

[youtube https://www.youtube.com/watch?v=lJbMBVyyEQA&w=500&h=282]

[youtube https://www.youtube.com/watch?v=It1ReJl3JJA&w=500&h=282]

More vulnerability reports:

Tesla car hacked at Pwn2Own contest 2
About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews



bitcoin
Bitcoin (BTC) $ 43,515.00
ethereum
Ethereum (ETH) $ 3,058.87
cardano
Cardano (ADA) $ 2.20
tether
Tether (USDT) $ 0.997511
binance-coin
Binance Coin (BNB) $ 370.92
xrp
XRP (XRP) $ 0.971806
solana
Solana (SOL) $ 143.69
polkadot
Polkadot (DOT) $ 30.65
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.218578
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 43,515.00
ethereumEthereum (ETH)
$ 3,058.87
tetherTether (USDT)
$ 0.997511
bitcoin-cashBitcoin Cash (BCH)
$ 534.73
litecoinLitecoin (LTC)
$ 157.70
bitcoinBitcoin (BTC)
37.106,33
ethereumEthereum (ETH)
2.608,37
tetherTether (USDT)
0,850603
bitcoin-cashBitcoin Cash (BCH)
455,98
litecoinLitecoin (LTC)
134,47
bitcoinBitcoin (BTC)
31,785.53
ethereumEthereum (ETH)
2,234.35
tetherTether (USDT)
0.728632
bitcoin-cashBitcoin Cash (BCH)
390.59
litecoinLitecoin (LTC)
115.19

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Crypto Scams
Crypto Scams Still Persistent In 2021, SEC Warns About Red Flags To Watch
September 9, 2021
Poly Network
Here’s How Hackers Stole Over $600 million in the Poly Network Attack
August 12, 2021
The World’s Most Infamous Crypto Hacks and Scams
July 31, 2021
Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021
What Role Do Cryptocurrencies Play In The Era Of Ransomware Attacks?
June 9, 2021

Blockchain/Cryptocurrency Questions and Answers

Beginner’s Guide to Investing in Cryptocurrency
August 9, 2021
Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021
Solana
What Is Solana (SOL) And How Does It Work?
June 26, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin43,755 0.58 % 3.98 % 9.20 %
Ethereum3,068.8 1.03 % 5.56 % 14.66 %
Cardano2.200 0.84 % 5.08 % 11.68 %
Tether0.9986 0.03 % 0.08 % 0.23 %
Binance Coin372.58 0.83 % 3.73 % 13.34 %
XRP0.9785 0.98 % 6.06 % 12.55 %
Solana144.84 1.18 % 12.44 % 8.67 %
Polkadot30.87 2.19 % 17.29 % 10.73 %
USD Coin1.000 0.12 % 0.10 % 0.11 %
Dogecoin0.2196 1.17 % 4.90 % 11.20 %

bitcoin
Bitcoin (BTC) $ 43,515.00
ethereum
Ethereum (ETH) $ 3,058.87
cardano
Cardano (ADA) $ 2.20
tether
Tether (USDT) $ 0.997511
binance-coin
Binance Coin (BNB) $ 370.92
xrp
XRP (XRP) $ 0.971806
solana
Solana (SOL) $ 143.69
polkadot
Polkadot (DOT) $ 30.65
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.218578