Building an electric vehicle simulator to research EVSEs: At #Pwn2Own Automotive, we built a custom device to let the EV chargers "charge". ZDI researcher Thanos Kaliyanakis explains how to put one together for your research. https://www.zerodayinitiative.com/blog/2025/3/14/building-an-electric-vehicle-simulator-to-research-evses

Hackers get $886,250 for 49 zero-days at #Pwn2Own Automotive 2025

https://www.bleepingcomputer.com/news/security/hackers-get-886-250-for-49-zero-days-at-pwn2own-automotive-2025/

Video highlights from Day Two of #Pwn2Own Automotive 2025 have been added to the YouTube playlist. Check them out at https://www.youtube.com/playlist?list=PLeFSM_a8Jri74jmIaNIHWJQuFlvEMUUVY #P2OAuto

Here's a better look at the Master of Pwn jacket and trophy. In case you're not a NASCAR fan, our theme this year pays homage to Richard "The King" Petty. Look him up. He was pretty good. #P2OAuto #Pwn2Own

Wow. Just wow. The @synacktiv team was able to take over the #Tesla Wall Connector while having their exploit originate from the Charging Connector. To our knowledge, that's never been demonstrated publicly before. They head to the disclosure room with details. #P2OAuto #Pwn2Own

Whew! It took two attempts but the #Synacktiv team successfully exploited the #ChargePoint EV Charger and demonstrated signal manipulation over the connector. They are off to the disclosure room to go over how they did it. #P2OAuto #Pwn2Own

It’s kind of awesome to see #pwn2own being live-tooted on the fediverse.

@marcan nodds in agreement #Apple doesn't need to have backdoors in Hardware when their entire #iCould is backdoored and can be weaponized to brick devices.

• OFC similar functionality can be achieved with #CompuTrace on #amd64-based #Laptops (i.e. #ThinkPads) and compared to that, #AMT + #ManagmentEngine is trivial to #exploit and should be considered real #backdoors (abeit "well meaning" in the sense of remote provisioning of entire fleets of devices, but still allowing to bypass the OS and offering DMA access to the CPU, so basically "#pwned")...

Either way, these are not inherent to the used #Silicon, but entirely #Firmware-based.

• AMT for example requires a "#Intel #vPro" configuration with Intel-made Ethernet NICs (i.e. i2xx & i3xx - Series) with a Q- or C-series Chipset & supporting #UEFI, so most Systems with cheap #Realtek-NICs aren't exploitable straight-away, and even then it requires certain settings to work, so not an easy "#Pwn2Own" style exploitability...

We have published the 2nd writeup about the EV vulnerabilities we exploited for #Pwn2Own Automotive: the JuiceBox 40.

Despite what the @thezdi advisories say, these bugs were NOT fixed by the vendor! SiLabs has declared the product EOL and won't fix it.

https://sector7.computest.nl/post/2024-08-pwn2own-automotive-juicebox-40/

That is *way* faster than 10FD (h/t @shaver). Impressive.

#InfoSec #pwn2own
https://www.bleepingcomputer.com/news/security/mozilla-fixes-two-firefox-zero-day-bugs-exploited-at-pwn2own/

I don’t usually post work stuff but #ibm #xforce doesnt have a Mastodon presence so once in a while I have to post the important stuff.

Congratulations to @chompie1337 who scored a win in the Windows 11 LPE category! Her exploit circumvents the latest Virtualization Based Security mitigations. She becomes the first solo female competitor to score a full win at #Pwn2Own, the world’s most prestigious hacking competition.

(Only links I have are to Xitter and I won’t post those)

Validated! First time #Pwn2Own contestant gabe_k of exploits.forsale used an always tricky race condition to escalate privileges on #Windows 11. He earns $15,000 and 3 Master of Pwn points. #P20Vancouver

Pwn2Own Automotive: Gewinner demonstrieren zwei neue Tesla-Hacks - Golem.de
https://www.golem.de/news/pwn2own-automotive-gewinner-demonstrieren-zwei-neue-tesla-hacks-2401-181630.html #Pwn2Own #Tesla #Hacked

Hacking-Wettbewerb Pwn2Own: Teilnehmer kombinieren drei Lücken und knacken Tesla | heise online
https://heise.de/-9609534 #Hacking #Pwn2Own #Tesla

Hackerwetbewerb Pwn2Own: Teilnehmer knacken Samsungs Galaxy S23 mehrmals | heise online
https://heise.de/-9346581 #Hackerwetbewerb #Pwn2Own

I'd watch these like speedrunners watch AGDQ!

Windows 11, Tesla, Ubuntu, and macOS hacked at Pwn2Own 2023 https://www.bleepingcomputer.com/news/security/windows-11-tesla-ubuntu-and-macos-hacked-at-pwn2own-2023/

New by me at Forbes on the morning after the day before when #pwn2own kicked off. Some great exploits already, with #apple, #microsoft, #tesla, #ubuntu, #adobe, #oracle all falling victim.

Really looking forward to0 today and tomorrow now.

#infosec #hacking #hackers #hackernews

https://www.forbes.com/sites/daveywinder/2023/03/23/apple-macos-microsoft-windows-11-ubuntu-desktop-hacked-during-1-million-hacking-spree/

Success! AbdulAziz Hariri of Haboob SA completed his attack against Adobe Reader using a 6-bug logic chain exploiting multiple failed patches which escaped the sandbox and bypassed a banned API list. He earns $50,000 and 5 Master of Pwn points. #Pwn2Own #P2OVancouver

New by me at Forbes, a round-up of the #Pwn2Own Toronto 2022 #hacking event. Some 63 #zeroday vulns successfully exploited in the allotted time, earning payouts from #ZDI of very nearly [Professor Evil] One Million Dollars [/Professor Evil] in total.

#infosec #news

https://www.forbes.com/sites/daveywinder/2022/12/12/elite-hackers-made-almost-1-million-last-week-heres-how/

New by me at #forbes this afternoon: day one of #pwn2own Toronto 2022 is done and dusted, and it delivered not one but two zero-day exploits against the #Samsung #Galaxy #S22 #smartphone.

#infosec #hacking #HackingIsNotACrime

https://www.forbes.com/sites/daveywinder/2022/12/07/zero-day-hackers-breach-samsung-galaxy-s22-twice-in-24-hours/