Google Pixel has been hacked by a group of Chinese hackers, while Apple Safari and Adobe Flash have dropped next to it in a PwnFest hacking competition held in Seoul on Friday.
The latest offer device of Mountain View was hacked by a white-hat from the Chinese company Qihoo 360, who used an unknown vulnerability to be able to perform remote code execution earning $120.000 in prize money.
The exploit opens the Google Play store before Chrome runs and displays a webpage that reads: "Pwned By 360 Alpha Team".
Google is now trying to develop a patch that fixes vulnerability.
It should be mentioned that this is the second time in two weeks that the security of Pixel has been violated. The first time (zero-day is still unpatched) exploit was developed by Qihoo 360's rival team, Tencent Keen, and made public at the Mobile Pwn2Own event in Japan.
After hacking in Google Pixel they were in a different order:
Apple's Safari now fully updated on MacOS Sierra didn't seem too lucky. Also Chinese hackers Pangu a group known for releasing iOS jailbreak tools along with hacker JH hacked the program browsing Cupertino using a zero day that gave them root access. The hack took 20 seconds and won $80.000.
The Qihoo 360 team also hacked Adobe Flash (with one finger), using a zero-day discovered ten years ago and a vulnerability of Win32k. They won another $120.000, and it took four seconds.
Another notable hack of PwnFest was in Microsoft Edge and a zero day exploit against the VMWare Workstation, which was released on Thursday.
Qihoo 360 hackers left with 520.000 dollars in prize money from the event.
