Google Pixel has been hacked by a group of Chinese hackers, while Apple Safari and Adobe Flash have dropped next to it in a PwnFest hacking competition held in Seoul on Friday.
The last offer of Mountain View device was violated by a white-hat of the Chinese company Qihoo 360, who used an unknown vulnerability to manage remote code execution by winning 120.000 dollars as a cash prize.
The exploit opens the Google Play store before Chrome runs and displays a webpage that reads: "Pwned By 360 Alpha Team".
Google is now trying to develop a patch that fixes vulnerability.
Let's say it is the second time in two weeks that Pixel security is breached. The first time (zero-day is still unpatched) exploit was developed by Qihoo 360's rival team, Tencent's Keen, and became public at Mobile Pwn2Own in Japan.
After hacking in Google Pixel they were in a different order:
Apple's Safari now fully updated on MacOS Sierra did not seem very lucky. Pangu's Chinese hackers, a group known to release iOS jailbreak tools along with the JH hacker, violated Cupertino's browser by using a zero day that gave them root access. For hack they took 20 seconds and won 80.000 dollars.
The Qihoo 360 team also infringed Adobe Flash (using a finger) using a zero-day discovery that was discovered ten years ago and a vulnerability of Win32k. They won another 120.000 dollars, and it took four seconds.
Another notable hack of PwnFest was in Microsoft Edge and a zero day exploit against the VMWare Workstation, which was released on Thursday.
Qihoo 360 hackers left with 520.000 dollars in prize money from the event.