Google’s Pwnium pays $60,000 to hacker for breaching Chrome browser

Google’s Pwnium pays $60,000 to hacker for breaching Chrome browser
Proving that Google will pursue just about any opportunity to shore up vulnerabilities in their platforms, the search giant paid out $60,000 to the hacker known as “Pinkie Pie” who successfully exploited Google’s Chrome browser at “Pwnium 2” at the Hack in the Box 2012 event in Kuala Lumpur, Malaysia.

Pinkie Pie was able to exploit and attack against two vulnerabilities in the browser. The first was related to the browser’s WebKit Scalable Vector Graphics functions which allowed him to compromise the renderer process. The second was a bug in the IPC layer.

The image displayed on a compromised computer after it was successfully hacked by Pinkie Pie during the first Pwnium competition in March. Image from Ars Technica.

The image displayed on a compromised computer after it was successfully hacked by Pinkie Pie during the first Pwnium competition in March. Image from Ars Technica.

Because these exploitations were rooted entirely on vulnerabilities within the Chrome browser, it qualified for Google’s highest award as a “full Chrome exploit” worth $60,000 and a free Chrombook. More impressive than the payout, was Google’s response to the vulnerabilities.  A crack team of engineers coded a patch and the company claims it deployed the fix across its platforms in less than 10 hours after Pwnium 2 was concluded.  That is light-speed compared to bug and security fixes reaching other browsers like Internet Explorer, Firefox and Safari.

sources: The Chromium Blog, Ars Technica

FEATURED VIDEO

21 Comments

1. The_Innovation

Posts: 648; Member since: Jul 18, 2012

With all due respect, Google doesn't f*** around.

3. gallitoking

Posts: 4721; Member since: May 17, 2011

I wish they also pay out MS for using their patents that quickly...

4. JuAli

Posts: 13; Member since: Oct 12, 2012

Google Rules!!

6. loli5

Posts: 76; Member since: Oct 08, 2012

URRRDURRRRHUUURRRRR HURRRR

15. sdcard_hater

Posts: 11; Member since: Oct 12, 2012

This community f**king sucks ass

17. MorePhonesThanNeeded

Posts: 645; Member since: Oct 23, 2011

No just the apple fanatics and android zealots, everyone else is pretty much fine on their own account.

19. jroc74

Posts: 6023; Member since: Dec 30, 2010

Pretty much....lol.

21. networkdood

Posts: 6330; Member since: Mar 31, 2010

if it is about Android/Google, G-King will find a way to 'down' it...the idiot has been on here for over a year spreading misinformation....

5. metalpoet unregistered

Hell yeah!!!! God i wish i was a hacker that way google could pay me out lol

10. The_Innovation

Posts: 648; Member since: Jul 18, 2012

Can you imagine? That's a decent salary right there. 60K, just like that.

2. maxican16

Posts: 364; Member since: Sep 29, 2011

Wow! Nice story.

7. KingKurogiii

Posts: 5713; Member since: Oct 23, 2011

Google f**king rocks. ;)

8. squallz506

Posts: 1075; Member since: Oct 19, 2011

That's why i buy google products. Apple would have sued the hackers. Js

12. Hammerfest

Posts: 384; Member since: May 12, 2012

I could swear Apple has a patent on this process, and a gag order on the details which you just let fly... Are you prepared to have your home and office raided by the Govenment... on behalf of Apple of course...

13. ibap

Posts: 865; Member since: Sep 09, 2009

No, but they'd have spent a month denying the problem existed, and then announced an OS update - no bug fixes, just improvements.

9. wendygarett unregistered

I'm here just to say... That pony is cute!!! :D

20. StreetNerd

Posts: 870; Member since: Dec 08, 2010

ok .

11. OptimusOne

Posts: 694; Member since: May 22, 2012

JOIN THE HORDE! man... it should have been rainbow dash that won... i like the picture

14. BadAssAbe

Posts: 506; Member since: Apr 22, 2011

If this was apple,they would sued for 60,000 and tooken his laptop LOL

16. sdcard_hater

Posts: 11; Member since: Oct 12, 2012

Pony spamming sucks ass, keep it to your own self offline, or go watch The Cell, the part where a horse gets sliced by glass blade, a metaphorically way of saying "Ponies sucks"

18. jroc74

Posts: 6023; Member since: Dec 30, 2010

"Pinkie Pie was able to exploit and attack against two vulnerabilities in the browser. The first was related to the browser’s WebKit Scalable Vector Graphics functions which allowed him to compromise the renderer process." Webkit....doesnt this help Apple in a round about way too?

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.