Slashdot is powered by your submissions, so send in your scoop


Forgot your password?

Submission + - New Details On OS X Bug: Firefox Also Vulnerable

An anonymous reader writes: More details have emerged about the MacOS X vulnerability Dino Dai Zovi developed to win the $10,000 CanSec PWN-2-0WN challenge; contrary to CNet's report, the vulnerability involves Java applets, and affects FireFox as well as Safari. MacOS X users can disable Java support in their browsers to mitigate the vulnerability. no-sms-queue-cansec-macbook-challenge-won/

Submission + - Fully updated OSX Box Hacked

Guanine writes: "The security blog Matasano Chargen recently reported that at the CanSecWest Applied Security Conference, a MacBook Pro with all the latest patches was successfully hacked. A vulnerability and exploit in Safari were developed by Dino Dai Zovi, then leveraged by Shane MacCauley to "get a shell with user level privilages." The reward is $10,000 and the hacked MacBook Pro."

Submission + - Researchers win $10000 in OS X Security Challenge

crackman writes: Today at the CanSecWest security conference, Shane Macaulay demonstrated a client side vulnerability and exploit developed overnight by Dino Dai Zovi of Matasano Security to win the PWN 2 0WN contest. The pair walks away with the recently raised bounty of $10000 as well as the MacBook used in the demonstration. Matasano has promised details of the vulnerability will be disclosed at a later date.

Life in the state of nature is solitary, poor, nasty, brutish, and short. - Thomas Hobbes, Leviathan