At the annual conference Pwn2Own, where hackers from around the world compete in the art of hacking applications and operating systems, the participants managed to identify a number of vulnerabilities in the desktop Safari browser. It is stated in the report Zero Day Initiative.
First, the team of hackers called phoenhex were able to break in Safari and touch panel touch Bar, for which he received a monetary reward in the amount of $ 65,000. Soon after, immigrants from MWR Labs team has discovered two vulnerabilities in Safari for committing so-called “escaping the sandbox”. Experts praised the discovery of 55 000 dollars.
Conferences like Pwn2Own is very important because in their framework, the hackers essentially assist large companies (including Apple) to detect vulnerabilities and receive a monetary reward. For the programmers this, in turn, the opportunity to show their skills in hacking software. The prize Fund for this conference is $ 2 million.
The information about the found vulnerabilities have already been reported to Apple, so there’s nothing to worry because this is not necessary — the engineers of the Corporation will certainly fix them with the next update of Safari.