The Pwn2Own hacking event again this year managed to sift through all the goals that had been set, which included Windows 11, Ubuntu, Firefox, Safari, Microsoft Teams and a Tesla car.
The Pwn2Own hacking event took place from May 18 to May 20, 2022 and the security researchers managed to hack everything, in a verification of the opinion "what locks unlocks". Famous targets such as Windows 11, Ubuntu (for linux lovers), Firefox, Safari, Microsoft Teams and a Tesla were successfully hacked during the three days of the event.
Pwn2Own is an annual event that brings together security researchers from around the world. On the 15th anniversary of the event, 17 security researchers attempted to exploit 21 targets in multiple categories.
On the 1st day event, researchers were able to hack Microsoft Teams, Oracle VirtualBox, Mozilla Firefox, Microsoft Windows 11, Apple Safari και Ubuntu desktop. Microsoft Teams and Ubuntu Desktop were successfully hacked by multiple teams during the day. All efforts were successful that day.
On the 2st day, security researchers hacked Tesla Model 3 Infotainment System, Ubuntu Desktop and Microsoft Windows 11. Ubuntu Desktop has been breached twice successfully.
On the 3st day, The hacker they managed to successfully exploit Windows 11 and Ubuntu Desktop. The researchers exploited Microsoft's Windows 11 operating system three times with no failed attempts.
Repairs
Mozilla has already been released a information for the Firefox web browser. Firefox 100.0.2, Firefox ESR 91.9.1, Firefox 100.3 for Android, and Thunderbird 91.9.1 are already available with patches for the reported security vulnerability.
Microsoft is expected to release updates for Windows 11 in the coming weeks. One possible date is the June 2022 patch, which is scheduled for June 14, 2022.
Vendors whose products were attacked during the event "have 90 days to make a correction" for vulnerabilities discovered, according to the Zero Initiate website.
At the link above you can see the full overview of the event, for additional details about specific hacks or links to the profiles of the hackers (security researchers) who participated in the event.