Top Apple stories: Exploding iPhone X, new smart home devices

In this week’s top stories: An exploding iPhone X, Zuckerberg’s anti-Apple push, new smart home blinds and garage doors, and more. Read on for all of this week’s top Apple stories.

Sylvania HomeKit Light Strip

This week, we had a case of an exploding iPhone X. It seems the issue occurred right after an update by the user to iOS 12.1. Apple’s initial repose to the issue was that the explosion is “definitely not expected behavior,” but the company is investigating.

The New York Times this week published a bombshell report about Facebook. In the story, it was alleged that Zuckerberg forced Facebook executives to switch to Android after being “infuriated” by Tim Cook. Facebook denies this claim, of course.

It was also reported this week that Qualcomm is using a public affairs company to spread anti-Apple stories. It’s the same group Facebook allegedly used against its competitors, but Qualcomm’s efforts come in the midst of its messy legal battle with Apple.

UnitedHealthcare announced a new initiative this week that will reward customers with a free Apple Watch for competing certain rewards. Read all of the details on that promotion here.

These and the rest of this week’s top Apple stories below…

iOS | macOS | tvOS | watchOS |

iPhone |

iPad Pro |

Mac |

Smart home |

Apple Watch |

Top Apple stories, retail |

Top Apple stories, company |

Subscribe to 9to5Mac’s YouTube channel for more videos.

This week’s top videos |

9to5Mac Daily |

Listen to a recap of the top Apple news of the day from 9to5Mac. 9to5Mac Daily is available on iTunes and Apple’s Podcasts app, Stitcher, TuneIn, Google Play, or through our dedicated RSS feed for Overcast and other podcast players.

Happy Hour Podcast #199 |

This week Benjamin and Zac discuss the new MacBook Pro GPU updates, the upcoming Blackmagic eGPU Pro, Apple’s Mac SSD pricing, new Apple Watch bands, AirPower predictions, Spotify for Apple Watch, the first week with the new iPad Pro, and the state of Apple’s apps — not just the OS — on the iPad.

9to5Mac Happy Hour is available on iTunes and Apple’s Podcasts app, Stitcher, TuneInGoogle Play Music, or through our dedicated RSS feed for Overcast and other podcast players.


Making The Grade |

Making The Grade is a weekly series from Bradley Chambers covering Apple in education. Bradley has been managing Apple devices in an education environment since 2009. Through his experience deploying and managing 100s of Macs and 100s of iPads, Bradley will highlight ways in which Apple’s products work at scale, stories from the trenches of IT management, and ways Apple could improve its products for students.

Black Friday at 9to5Toys |

As always, we’ll have all of this year’s best Black Friday deals, news and ad leaks right here at 9to5Toys. If you’re not yet following us on Twitter, be sure to lock that in.

We also have a new 9to5Toys iOS app that’s now available for FREE. Customizable alerts, Apple Watch compatibility and more ensure that you’ll be up to date on all of the best deals throughout the holiday shopping season.

Subscribe to get all 9to5Mac’s stories delivered to your inbox daily. And to 9to5Toys for the best deals from around the web.

Featured in top image: Dell 38-inch UltraSharp Curved Monitors, Grovemade’s Desk Shelf System, Nixie Tube Clock, Apogee Quartet, KRK VXT6 Studio Monitor speakers, Classicbot Classic Vintage Mac Toy. Read about the setup over on 9to5Toys as part of the ‘Behind the Screens’ series. 




Source link

Apple’s iPhone X Easily Hacked To Access Deleted Photos

Over the years, Apple has spent countless hours refining and updating the software being implemented on its devices. The iOS developers at the company comb through seemingly endless lines of code to locate and eradicate bugs that could potentially comprise the security of the information stored by consumers. Unfortunately, not all bugs are squashed by the developers and hackers are often able to exploit these bugs to access private information like previously deleted photos and files, according to a report from Forbes.

This new iOS 12.1 privacy bug was discovered at the Pwn2Own 2018 mobile hacking competition held in Tokyo, which is an annual event that challenges white-hat hackers to find vulnerabilities in popular software being used on mobile devices.

According to the report, hacking duo Richard Zhu and Amat Cama, also known as Fluoroacetate, were able to find and exploit weaknesses in the Safari browser which allowed them to access files and photos that had already been deleted from the iPhone X. The vulnerability was found in a just-in-time (JIT) compiler, which is supposed to make the iPhone faster but has instead left an open door for intruders. Zhu and Cama managed to carry out their JIT exploit through a malicious Wi-Fi access point.

Deleting a photo from an iPhone isn’t a one-step process. When a user attempts to delete a photo, the phone’s operating system will show a prompt with a Delete Photo button. After hitting the delete button, the photo still isn’t completely gone from the iPhone. It will then go to a Recently Deleted folder where it will remain until it expires, usually after 30 days. Users are able to go into the Recently Deleted folder and make the photos disappear permanently and it has been confirmed by iPhone and Mac forensic specialist Vladimir Katalov that Apple does actually destroy those files as promised and there’s “no chance for recovery.”

The hackers were able to remotely access these recently deleted photos without alerting the user of the iPhone. The team won $50,000 for their discovery and Apple has been made aware of the bug, but has yet to address the issue. It’s likely the company won’t patch the vulnerability until its next iOS update.

Pwn2Own was first held in 2007 and was created by network security researcher Dragos Ruiu. “Pwn2Own is a great opportunity to develop and test ourselves while helping to secure technology many of us rely on. We’re very proud of the team’s latest win and their overall track record in the competition,” managing director of MWR InfoSecurity Ed Parsons said in a press release.

The iPhone X wasn’t the only well-known device to be hacked at the event. The Samsung Galaxy S9 and Xiaomi Mi6 were also hacked along with 15 other devices, earning hackers an overall total of $325,000 in cash prizes.




Source link

Galaxy S9, iPhone X, Xiaomi Mi6 Devices Hacked at Pwn2Own Contest

Two teams of hackers managed to break into the iPhone X, Samsung Galaxy S9 and Xiaomi Mi6 mobile devices at the mobile Pwn2Own contest held in Tokyo this week by using multiple types of exploits—moves that earned them more than $300,000.

The first day of the contest started with a hack of the Xiaomi Mi6 over NFC, which fell into Pwn2Own’s Short Distance Exploit category.

A team named Fluoroacetate, made up of researchers Amat Cama and Richard Zhu, used the phone’s touch-to-connect NFC feature to open the web browser and navigate to a specially crafted webpage that exploited an out-of-bounds write in WebAssembly to get code execution on the phone. They were awarded $30,000.

Next was a team from MWR Labs, a subsidiary of F-Secure, which included researchers Georgi Geshev, Fabi Beterke and Rob Miller. They exploited the Xiaomi Mi6 over Wi-Fi by tricking the device to access a specially crafted captive portal page that launched an exploit chain combining five different bugs to install and run a rogue application on the device. They, too, were awarded $30,000.

Team Fluoroacetate then compromised the Samsung Galaxy S9 through a vulnerability in the baseband component, the modem firmware that handles mobile connections. Baseband exploits are highly valuable to attackers because they are almost impossible to detect and block, which is why the team earned $50,000 for their effort.

Also during the first day, MWR Labs went after the iPhone with a Wi-Fi based attack that combined a JIT vulnerability in the web browser and an out-of-bounds write to escape the iOS sandbox and escalate privileges. They were awarded $60,000, which is a small sum considering that there are exploit brokers willing to pay up to $1.5 million for an iOS exploit that doesn’t require user interaction.

The MWR Labs team also exploited the Samsung Galaxy S9 over Wi-Fi using a no-interaction captive portal technique that resulted in installation of a rogue application. Their exploit chain failed on first attempt, but succeeded on the second try, which earned them an additional $30,000.

Day two of the contest saw the teams return with exploits in the mobile browser category. The Fluoroacetate team combined two browser bugs to exfiltrate data from the iPhone X and then pulled off a similar attack on the Xiaomi Mi6. They were awarded $50,000 and $25,000, respectively.

MWR Labs also earned $25,000 after exploiting the Xiaomi Mi6 through the browser to silently install an app and exfiltrate pictures from the phone.

Both teams had failures as well. Fluoroacetate tried to exploit the iPhone X through the baseband, but couldn’t get their exploit to work in the allocated time. The same thing happened to team MWR Labs when they attempted to hack the iPhone X through the browser.

All of the exploits were shared with Trend Micro’s Zero Day Initiative (ZDI) arm, which organizes the Pwn2Own contest and will be reported to the affected vendors so they can be fixed.

Critical Vulnerability Patched in Another Popular WordPress Plug-in

A critical vulnerability was discovered in the AMP for WP plug-in, which allows WordPress administrators to make their content available as Accelerated Mobile Pages (AMP).

AMP is a publishing technology that optimizes web pages for mobile browsers and serves them from high-performance caches run by Google and other large content delivery networks. Estimates claim AMP pages load 75 percent faster and consume 10 times less data than their non-AMP counterparts.

AMP for WP is one of the most popular AMP-related plug-ins for WordPress, with more than 100,000 active installations on websites. It was removed from the official WordPress plug-in repository in October after a critical vulnerability was identified in its code and was reinstated this week after a patched version was released.

Users are advised to upgrade to AMP for WP version 0.9.97.20 or higher as soon as possible, as the vulnerability is publicly known.

The “vulnerabilities allow an unauthorized user to change any plugin option, including injecting custom HTML code on the main page,” security researcher Luka Šikić, said in a blog post that explains the issue in detail.


Source link

iPhone X bug lets hackers steal your deleted photos

iPhone X Lock Notes Image

Hackers have discovered a way to break into your iPhone and take away your deleted photos. Thankfully, the two people who discovered this vulnerability aren’t the bad kind of attackers out to steal your data. They were actually competing for a $50000 prize as part of a Mobile Pwn2Own contest taking place in Tokyo, winning the top draw thanks to an innovative hack.

Richard Zhu and Amat Cama, together known as Fluoroacetate, were challenged to find a way to attack an iPhone X running iOS 12.1, the latest version of the software. They decided to exploit a flaw in the default Safari browser. Specifically, in the just-in-time (JIT) compiler.

How Hackers Broke Into An iPhone X

JIT compilers are basically programs which turn Java bytecode into instructions which are sent directly to the processor. It makes iPhones run faster since it helps convert computer code in real time while an app is running. Forbes reports that the hackers attacked the JIT compiler over a malicious Wi-Fi access point.

As pointed out by a spokesperson for the contest, this is a coffee shop scenario, so everyone is exposed. Cama and Zhu retrieved a deleted photo from the iPhone X using the flaw. They could have actually grabbed more, but they decided to use it for the demonstration since it was the first file they found on the disk.

Apple doesn’t immediately eliminate a photo when you press delete. Instead, it shifts the image to a Recently Deleted album. You can either un-delete the image or permanently remove it yourself. If you don’t do anything, iOS gets rid of it after 30 days.

Also Read: Man says his iPhone X exploded after updating to iOS 12.1

There’s no chance of permanently erased snaps being stolen since Apple destroys them completely. It’s just the recently deleted ones which are vulnerable, plus whatever else hackers can find. The company has been informed of this problem, as per the rules of the contest, but hasn’t officially commented on it yet.

Apple will probably roll out a software update to address the issue in the near future. Until then, keep your photos safe.


Source link

Apple Informed Of iPhone X Flaw That Could Allow Hackers To Retrieve Deleted Photos

Hackers have raked in a cool $50,000 from a tech contest after finding a flaw that allowed them to retrieve a photo that was supposed to have been deleted from an iPhone X.

Richard Zhi and Amat Cama banded together as Fluoroacetate to plan an attack on an Apple device running the 12.1 iOS, the company’s newest mobile software. The hack enabled the duo to exploit weaknesses in the Safari browser, ultimately permitting the retrieval of an image that should have been deleted.

According to Forbes, Apple was told of the vulnerability, as per the rules of the Mobile Pwn2Own contest that took place in Tokyo, Japan. And, apparently, it was possible for the hack to pull out more media and information than just a photo.

RELATED: APPLE & SAMSUNG FINED FOR INTENTIONALLY SLOWING DOWN PHONES


Zhu and Cama were able to find the deleted photo – that remained on the disk after being deleted – with their hack because it was the first file available.

Users of computers and mobile devices should know that deleting a file isn’t as simple as clicking the delete option. And with iPhones, deleted files stay in the trash for 30 days before being permanently removed.

It’s also possible to access the Recently Deleted file to remove it manually and, as iPhone and Mac forensic specialist Vladimir Katalov has confirmed, there’s “no chance for recovery” after that. But Zhu and Cama proved it was still possible to hack a mobile Apple device and pull up files from the Recently Deleted storage.

As things stand, the vulnerability remains, as Apple has yet to a patch.

Android users are in the same boat, with the team also demonstrating they could get into Google devices such as the Samsung Galaxy S9 and the Xiaomi Mi 6 during the competition. Another team, F-Secure’s MWR Labs, also exposed other flaws on the same devices.

Given that Apple has been informed, they should make a patch available quite soon. However, they had not responded to a request for a comment from Forbes at the time of writing.

NEXT: DUBAI POLICE ARE NOW TRAINING TO RIDE FLYING MOTORBIKES


You Can Soon Book A Stay In The World’s First Underground Hotel




Source link

Best Black Friday 2018 iPhone deals: $400 iPhone X gift card, BOGO iPhone XR, and more

Black Friday is nearly here, and that means huge discounts are coming to your favorite devices. Yes, even the iPhone. Apple may be notoriously stingy when it comes to Black Friday deals and marking down its smartphones, but that doesn’t mean carriers and retailers aren’t generous.

Also: Best Black Friday 2018 deals: Business Bargain Hunter’s top picks

We’ve already spotted tons of sales, and some of them lob hundreds of dollars off the top models or come with perks like gift cards. Everything from the latest models, including the iPhone XR, iPhone XS, and iPhone XS Max, all the way down to the iPhone SE, are on sale.

CNET: Best Black Friday deals | Best Holiday gifts 2018 | Best TVs for the holidays

Some sales start as early as Nov. 16, while others will go live from Thanksgiving (Nov. 22) through to Cyber Monday (Nov. 26). Make sure you watch when sales start and end. If you want to see deals specifically for other phones, go here.

We also have more Black Friday deals here.

Best Black Friday 2018 Apple iPhone deals

iphone-xr-in-hand.jpg

(Image: ZDNet)

Verizon: Buy one iPhone, get an iPhone XR (or up to $750 off iPhone X)

Verizon’s offer works this way: Buy one of the new iPhone models (on a new line of service), and get a free iPhone XR. Or, you can open a new line of service and get $750 off any iPhone X, iPhone XS, or iPhone XS Max. Savings appear as monthly bill credits over two years.

This sale is now live.

Read the review: Apple iPhone XR review: Lower cost comes with camera compromises

09-iphone-8-and-iphone-8-plus-productred-special-edition-2018.jpg

(Image: ZDNet)

T-Mobile: Free iPhone XR, 8, or 8 Plus (or up to $750 off X models)

If you have one or more phone lines through T-Mobile, you can add another and trade in your old phone to get a “free” iPhone XR, iPhone 8, or iPhone 8 Plus for use on that additional line. You can also get up to $750 off the iPhone X, iPhone XS, or iPhone XS Max with this deal.

The sale begins Nov. 16. Read the details here.

Read the review: iPhone 8 review: More of the same, but better

iphone-8-iphone-8-plus-4.jpg

(Image: ZDNet)

Walmart: $400 gift card with iPhone X, iPhone 8, or iPhone 8 Plus

Technically, the iPhone in this deal isn’t reduced. You must pay full price for an iPhone X, 8, or 8 Plus, which you’ll you need to activate through AT&T, Sprint, or Verizon. However, you will get a $400 gift card at Walmart with your purchase. This offer applies to in-store only.

The sale starts Nov. 22 and lasts until Nov. 23.

Read the review: Apple iPhone X review: This is as good as it gets

iphone-xs-max.jpg

(Image: ZDNet)

Walmart: $300 gift card with iPhone XS, iPhone XS Max, or iPhone XR

This deal is nearly identical to the one above, only it includes Apple’s latest models (iPhone XS, iPhone XS Max, and iPhone XR) and a free $300 gift card from Walmart. Again, you’ll need to activate through AT&T, Sprint or Verizon. The offer still applies to in-store purchases.

The sale starts Nov. 22 and lasts until Nov. 23.

Read the review: Two weeks, too big: Goodbye Apple iPhone XS Max

07-iphone-xs-and-iphone-xs-max.jpg

(Image: ZDNet)

Best Buy: Save $150 on iPhone XS, iPhone XS Max, or iPhone XR

Apple’s newest iPhone models are normally hard to find discounted, but for Black Friday, they’re $150 off at Best Buy. It requires qualified activation with AT&T, Sprint, or Verizon.

The sale starts Nov. 22.

Also: iPhone XR outshines XS value for upgraders

apple-091217-iphone-x-4119.jpg

(Image: ZDNet)

Best Buy: Save $200 on iPhone X

Got your eye on last year’s iPhone X model? Then head to Best Buy this Black Friday and save $200. Again, the deal requires activation on AT&T, Verizon, Sprint.

The sale starts Nov. 22.

Read the review: One month with the Apple iPhone X: More powerful than a Plus

iphone-6s-46.jpg

(Image: ZDNet)

Best Buy: Save $200 on iPhone 6S

This phone is getting a bit long in the tooth, but for $100, you can’t beat it. You can choose between Simple Mobile and Total Wireless as your service providers.

This sale begins Nov. 22.

Read the review: Apple iPhone 6s Plus review: The most significant ‘s’ upgrade

wwdc10.jpg

(Image: ZDNet)

Best Buy or Walmart: iPhone SE for $80 (save $60)

Apple’s smallest iPhone may be a couple years old, but it’s a great budget device and perfect for kids or anyone who wants the iPhone experience without the price tag. It costs $80 from both Best Buy (on Simple Mobile’s service) and Walmart (Family Mobile service).

At Best Buy, the sale starts Nov. 22. At Walmart, it starts online Nov. 21 or in stores on Nov. 22.

Read the review: Apple iPhone SE review: Back to the future

31-iphone-xs-max.jpg

(Image: ZDNet)

Target: $250 gift card with iPhone XS or iPhone XS Max

Just like Walmart, Target is offering gift cards with the purchase of an iPhone. In this case, if you buy an iPhone XS or iPhone XS Max, you’ll get a $250 gift card. It applies to in-store purchases only, and qualified activation is required on AT&T, Sprint, or Verizon.

The sale starts Nov. 23 and lasts until Nov. 25 Limited to two phones per customer.

Read the review: iPhone XS Max review: The iPhone’s future is big and bright

apple-091217-iphone-x-3982.jpg

(Image: ZDNet)

Target: $150 gift card with iPhone X, iPhone 8, or iPhone 8 Plus

You can also get last years’ iPhone models (iPhone X, 8, or 8 Plus) with Target’s gift card promo this Black Friday. Just pick up any model, and you’ll get a $150 card. It applies to in-store purchases only, and qualified activation is required on AT&T, Sprint, or Verizon.

The sale starts Nov. 23 and lasts until Nov. 25 Limited to two phones per customer.

Read the review: iPhone 8 Plus Review: Bigger is better


For more great deals on devices, gadgetry, and technology for your enterprise, business, or home office, see ZDNet’s Business Bargain Hunter blog. Affiliate disclosure: ZDNet earns commission from the products and services featured on this page.

PREVIOUS AND RELATED COVERAGE:

Great gifts: 5 best TV streaming devices of 2018

Yes, you can buy a TV with streaming, but internet TV streaming devices are still a great deal. Here are this year’s best to consider for your viewing pleasure.

Work and play: Our picks for the holiday’s best tech gifts

In work and play, do you always give it your best? Then you probably want to give the best gifts, too, right? We’ve got your covered.

Best gifts: 20 luxury gadgets for the billionaire who has everything

Money may not be able to buy you happiness — but it certainly can provide you with some crazy technology and gadgets. Here are some of our favorite luxury gifts.

Best gifts: Top iPhone XS or XS Max accessories

Here are the very best accessories to help you get the most from your new iPhone.


Source link

Target jumps the gun with early iPhone X, Galaxy Note 9, and Pixel 3 Black Friday deals

Can’t wait another week for the actual Black Friday frenzy to begin at retailers like Best Buy and Target? The former has already jumped the gun not once, but twice, with a series of cool limited-time deals on everything from the iPhone XS to the iPhone XR, Samsung Galaxy Note 9, Google Pixel 3, 9.7-inch iPad, and 10.5-inch iPad Pro, and now the latter follows suit with a killer “sneak peek 4-day sale” of its own.

Just like Best Buy, Target is not playing around, planning to sell loads of popular mobile devices at Black Friday prices well ahead of time while obviously saving some of the most exciting doorbusters for next week’s promotions.

Unfortunately, that means you can’t already score $250 gift cards with “qualified” iPhone XS or XS Max activations, but there’s nothing stopping you from buying an iPhone X on a Verizon, AT&T, or Sprint monthly installment plan between Sunday, November 18, and Wednesday, November 21, alongside a complimentary $150 coupon.
Similarly, Samsung Galaxy S9 and S9+ buyers willing to agree to a device payment arrangement on the same three carriers will be eligible for free $300 gift cards during the same promotional period, while the Galaxy Note 9 will be sold bundled with the same freebie for Verizon and AT&T customers only. 
If you’re in the market for Google’s stock Android-powered Pixel 3 or Pixel 3 XL instead, you’ll obviously have to activate one of the two handsets on Verizon to receive a gratis $200 gift card.
As far as outright discounts go, wearable enthusiasts should look forward to early Samsung Galaxy Watch and Fitbit Alta Black Friday deals bringing their prices down from $350 and $100 to $280 and $60 respectively.

Finally, those looking for an ultra-affordable Android slate may want to give a $160 Samsung Galaxy Tab A 10.1 or $90 Amazon Fire HD 8 Kids Edition a chance after $120 and $40 markdowns respectively. Who wants to beat the rush and get a nice head start on their holiday shopping?




Source link

Man Claims His iPhone X ‘Exploded’ While Updating iOS

A man claims his iPhone X exploded while updating to the latest operating system.

Twitter user ‘Rocky Mohemedali‘, real name Rahel Mohamad, shared photos of fairly destroyed-looking handset with the caption claiming that the phone ‘got hot’ while updating and then exploded. Not ideal.

Speaking to Gadget 360, Mohamad said: “This year early January I bought the iPhone and have been using it normally.”

As he went to update the iOS, he put his phone on charge. He added that while it was charging, ‘dark grey smoke started coming from the phone’.

“The update was completed and as soon as the phone turned on it started to smoke and caught fire,” he said.

As he tagged the tech company in the tweet, Apple responded but its reply seems to be stating the bloody obvious, with the company saying: “That’s definitely not expected behaviour. DM us, so we can look into this with you.” Well, yeah, no shit, Sherlock.

Mohmad said that Apple asked him to ship the phone out to them so they could investigate further.

In the replies people were quick to rip the piss out of Apple, while others said their phones had also been heating up during the download and beyond.

Meanwhile, Samsung didn’t miss an opportunity for a bit of banter, when a user jokingly tagged them in a comment and wrote: “Always copying Samsung”, the companies official account replied: “How original.”

As you probably remember there was a lot in the news a while back about Samsung handsets exploding. All the way back in 2016, Samsung was forced to issue a recall of its Galaxy 7 phones amidst reports of them exploding.

The UK release date had to be put back following the reports of explosions in South Korea.

According to the Independent the fault was present in less than 0.01 percent of handsets.

Featured Image Credit: PA




Source link

iPhone X, Samsung Galaxy S9, Xiaomi Mi 6 Hacked At Pwn2Own Tokyo 2018

iPhone X, Samsung Galaxy S9, and Xiaomi Mi 6 fall prey to hacking in the Pwn2Own hacking competition in Tokyo

Trend Micro-sponsored Pwn2Own, the annual hacking contest, that took place at the PacSec security conference in Tokyo, saw hackers successfully exploit iPhone X, Samsung Galaxy S9, and Xiaomi Mi6. Other handsets such as Google Pixel 2 and Huawei P20 too were involved in the contest.

For those unaware, Trend Micro, a global leader in cyber-security solutions, hosts Pwn2Own in an effort to promote its Zero Day Initiative (ZDI) program, that is designed to reward security researchers to exploit the latest and most popular mobile devices and demonstrate and disclose major zero-day vulnerabilities to tech companies. Following the contest, vendors will have 90 days to produce patches for these bugs.

Day 1 at the Pwn2Own Tokyo 2018

At the start of day one, Amat Cama and Richard Zhu from the “Fluoroacetate” team were the first to hack Xiaomi Mi 6 with the help of NFC component.

They used the touch-to-connect feature to force-open the web browser on the phone and navigate to their specially crafted webpage following which the webpage exploited an Out-Of-Bounds write in WebAssembly to get code execution. This hack earned them $30,000 USD and 6 Master of Pwn points.

“During the demonstration, we didn’t even realize that action was occurring until it was too late. In other words, a user would have no chance to prevent this action from happening in the real world,” ZDI reports in a blog post.

Later, the Fluoroacetate team went on to exploit another handset, Samsung Galaxy S9. They used a heap overflow in the baseband component to get code execution on the device. This hack earned the team another $50,000 USD and 15 more points towards Master of Pwn. Fluoroacetate also hacked iPhone X via Wi-Fi using a pair of bugs – a JIT (Just-In-Time) vulnerability in the web browser followed by an Out-Of-Bounds write for the sandbox escape and escalation. This hack fetched them another $60,000 USD and 10 additional Master of Pwn points.

Besides the Fluoroacetate team, another team MWR Labs (Georgi Geshev, Fabi Beterke, and Rob Miller) from UK too tried their luck on Xiaomi 6 and Samsung Galaxy S9. In the case of Xiaomi 6, they used a code execution exploit via Wi-Fi that forced the default web browser to navigate to a portal page. They then chained additional bugs together to silently install an application via JavaScript, bypass the application whitelist, and automatically start the application. This hack earned the MWR team $30,000 USD and 6 Master of Pwn points.

The MWR Labs team also combined three different bugs to successfully exploit the Samsung Galaxy S9 over Wi-Fi. They forced the phone to a captive portal without user interaction, then used an unsafe redirect and an unsafe application load to install their custom application. Although they failed in their first attempt, they successfully hacked in its second attempt, which earned the team $30,000 USD and 6 more Master of Pwn points.

Michael Contreras, a researcher who was last entry of the day, received $25,000 USD and 6 Master of Pwn points for hacking the Xiaomi Mi 6 browser via JavaScript type confusion flaw.

Day 2 at the Pwn2Own Tokyo 2018

The second day at the Pwn2Own Tokyo 2018 started with Fluoroacetate team exploiting one more zero-day vulnerabilities in iPhone X and Xiaomi Mi 6.

Their first iPhone X zero-day combined a JIT bug in the browser along with an out-of-bounds access that resulted in a deleted photo getting exfiltrated from the targeted phone. This hack fetched them a $50,000 USD.

In the case of Xiaomi Mi6, the team used an integer overflow vulnerability that allowed them to exfiltrate a picture from the device, earning them an additional $25,000 USD.

MWR Labs too successfully hacked the Xiaomi Mi6 on the second day. They loaded a custom application by combining a download bug along with a silent app installation and stole some pictures from the phone. They earned $25,000 USD for this hack.

Team Fluoroacetate with a total of 45 points and $215,000 USD in prizes won the title of Master of Pwn!




Source link

Deals: 24% Off iPhone X Refurbs, Rare NES, SNES Classic Discount


Deals: 24% Off iPhone X Refurbs, Rare NES, SNES Classic Discount … Today Only: Apple iPhone X 64GB GSM Unlocked (Refurb) for $725 at …


Source link