The winning hacker team grabs $744,500 at the Tianfu Cup, China’s top hacking contest. Windows 10, iOS, Chrome were among the programs that were hacked.
The third edition of china’s top hacking contest, the Tianfu Cup held in the city of Chengdu, in central China, ended yesterday.
The organizers stated that several mature and hard targets have been pwned this year. Successful exploits were carried out against:
- iOS 14 running on an iPhone 11 Pro
- Samsung Galaxy S20
- Windows 10 v2004 (April 2020 edition)
- Chrome
- .Ubuntu
- Firefox
- Safari
- TP-Link and ASUS router firmware
- VMWare ESXi (hypervisor)
- Adobe PDF Reader
- Docker (Community Edition)
- QEMU (emulator & virtualizer)
In the third edition of china’s top hacking contest, the Tianfu Cup saw Fifteen teams of Chinese hackers participating. The contestants had three trials of five minutes each to hack into a chosen target with an original exploit.
On the successful accomplishment of each attack, researchers obtained monetary rewards that varied on the target they picked and the nature of vulnerability.
Each and every vulnerability were reported to the software providers, per contest regulations, formed following the rules of the further established Pwn2Own hacking competition that has been conducted in the west for as long as the late 2000s.
Patches for all the bugs illustrated across the weekend will be presented in the upcoming days and weeks, as it commonly occurs after each TianfuCup and Pwn2Own contest.
Similar to the previous year, the winning team came from Chinese tech giant Qihoo 360. Named the “360 Enterprise Security and Government and (ESG) Vulnerability Research Institute,” the winners accounted for approximately two-thirds of the whole prize pool, moving back home with a huge $744,500 of the entire $1,210,000 awarded this year.
The AntFinancial Lightyear Security Lab and security researcher Pang were ranked second and third respectively.
Are you looking for more security updates? Subscribe to our Newsletter for the latestsecurity newsright from the security and research industries.
