A new Flagship Android Smartphone just took place in market and in public’s heart by Google a few days back. Google claimed that they most secure android smartphones ever. But these phones were hacked by a group of Chinese hackers.
Google Pixel phone which was recently hacked in PwnFst hacking competition 2016 by a team of white hat hackers of Qihoo 360 in Seoul.
The Qihoo 360 team demonstrated a proof-of-concept exploit that used a zero-day vulnerability in order to achieve remote code execution (RCE) on the target smartphone.
The exploit used for hacking then launched the Google Play Store before opening Google Chrome and opened a page that read about “Pwned By 360 Alpha Team,”.
Qihoo 360 hacking team won $120,000 cash prize for hacking the Google’s flagship Pixel.
Google will now work to patch the vulnerability to increase security.
The Qihoo 360 team also hacked Adobe Flash with a combination of a decade-old. Use-after-free zero-day vulnerability and a win32k kernel flaw to win a $120k prize.
Along with hacker JH, Chinese iPhone jailbreak team Pangu, which release million-dollar iOS jailbreaks for free. He discovered a Safari exploit that used a privilege escalation zero-day flaw, giving them root access on Apple’s updated Safari browser running on MacOS Sierra in just 20 seconds. Exploit earned the team $80,000.
Hackers Hacked Microsoft Edge in less than 20 seconds
Researchers from Qihoo 360 and South Korean security researcher Junghoon Lee, aka LokiHardt. He Hacked the Microsoft Edge web browser operating on Windows 10 Red Stone 1 in just 18 seconds.
The security experts gained SYSTEM-level remote code execution on Edge. Although they denied disclosing details of the vulnerability until the affected vendors come with a fix. Both researchers earned $140,000 for their Edge exploit.
Another Qihoo hacker team and Lee both, for the first time. He then remotely accessed VMware Workstation 12.5.1 without user interaction, bagging $150,000 for their exploits.
Details of all the exploits will be reported to the respected companies so that they can patch their software before black-hat hackers use them for malicious purposes.
The Qihoo 360 team of hackers walked away with a total prize money of $520,000.