Macbook air hacked in just 2 minutes.

The ninth annual CanSecWest conference held, at the Mariott Renaissance Harbourside hotel in downtown Vancouver, British Columbia kicked off on March 26, offering a $10,000 reward for anyone hacking the new macbook air with an original zeroday attack. The Prize (put up by TippingPoint, the security division of networking giant 3Com) did not stand for long, being claimed within the first 2 minutes of the conference opening.

Well known security researcher Shane Macaulay claimed the prize, but it is believed Dino Dai Zovi was the real creater of the attack, and that he and Macaulay had some sort of deal over the competition entry. Dino Dai Zovi, has a strong track record with exposing flaws in Apple, Windows and other Networking software, having previously and somewhat famously exposed flaws in Safari and Quicktime.

While neither Shane Macaulay, Dino Dai Zovi made any statements about whether mac or pc were more secure (and both are users of both Macbooks and pc’s) they have previously been on record as saying that Mac are not as immune to attacks as many of their users may like to believe.

The 2 other note books, a sony vaio and a Fujitsu U810 were not successfully hacked during the expo and remained unclaimed.

A zero day attack is defined as an computer threat that tries to exploit unknown, undisclosed or unpatched vulnerabilities in a computer application.

The flaw in Safari, that was exploited during the expo was actually in the way QuickTime handles Java. This threatens everyone running the Mac OS X and may even expose pc users running Safari and quicktime. It is expected that a patch to protect users from this flaw will be released soon.

Macbook air hacked in just 2 minutes.

2 thoughts on “Macbook air hacked in just 2 minutes.

  1. I’ve been trying to tell people that the Mac isn’t great and that just because it supposedly has better security doesn’t mean you should abandon a PC on my page PC V.S Mac on my website. I can’t believe that the Mac was hacked in 2 minuets. And the fact that the Sony Vaio and Fujitsu U810 weren’t hacked and were probably running Windows has gotta tell you something.

  2. david coxon says:

    In fairness i think once the $10,000 was taken – there was a lot less incentive to try to hack either of the other 2 machines, both of which were running vista which does have improved security over xp.

    Also the 2 minute thing was a little missleading. The challenge was anounced months ago and you had all the time you wanted to find a hack, they simply demonstrated there hack in 2 minutes on the day. Developing the hack took dino around a day i beleive.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s