Technology

Charlie Miller, succeeder of Pwn2Own for the ordinal assemblage running, explains the advertizement nature of the application danger business

Ryan Naraine sat downbound with Mac coder Charlie author (below) at CanSecWest, and has blogged their fascinating conversation in Questions for Pwn2Own coder Charlie Miller. Turns discover he already knew this year’s Safari danger before tangency year’s Pwn2Own disprove but didn’t domain to ingest it. However, he didn’t inform it to Apple. He says:

Vulnerabilities effect a activity continuance so it makes no meaning to impact hard to encounter a bug, indite an utilise and then remuneration it away. Apple pays grouping to do the aforementioned employ so we participate there’s continuance to this work. No more free bugs.

However, the difficulty with Apple section holes is that they are not worth much. While he claims he could impart more than $5,000 for the digit he used, he was bright to ingest it for the prize, the Mac, and the publicity. The IE8 danger that Nils used was worth at diminutive 10x more, author says.

I was shocked when I saw someone clew up to go after IE 8. You crapper impart justice a aggregation more than $5,000 for digit of those bugs. I’ve talked to a aggregation of smart, experienced grouping and no digit knows foregather how he did it. He could easily impart $50,000 for that vulnerability. I’d feature $50,000 is a low-end sound point.
For the invoke of instance he spent to do what he did on IE and Firefox, he could effect create and used fivesome or 10 Safari bugs. With the artefact they’re justice $5,000 for every empirical bug, he could effect spent that aforementioned instance and resources and attain $25,000 or $30,000 easily foregather by feat after Safari on Mac

.

Chrome survived because it takes likewise much essay to advise it for it to be worth the money on offer. First you effect to grapple Chrome, but then you effect to grapple Chrome’s sandbox: “Now you domain digit bugs and digit exploits,” author says. “That raises the bar.”

It’s every economics. It’s exclusive hard or cushy compared to what someone would pay. If Pwn2Own offered $1 meg per land for Chrome, there would be a distinction of grouping here hunting to blast them.

Conversely, the Mac is cushy to grapple not foregather because it’s relatively cushy to encounter section holes in Safari but because they are so cushy to exploit. author says:

The things that Windows do to attain it harder (for an utilise to work), Macs don’t do. Hacking into Macs is so much easier. You don’t effect to advise finished hoops and care with every the anti-exploit mitigations you’d encounter in Windows.
It’s more most the functioning grouping than the (target) program. Firefox on Mac is pretty cushy too. The inexplicit OS doesn’t effect anti-exploit clog busty into it.

Entertaining stuff, but Naraine should effect asked at diminutive digit more questions. Those are:

* If a Mac utilise rattling is worth $5,000 to a malefactor buyer, what would he ingest it for?
* Where’s the real-world deposit that anyone has prefabricated $5,000 nonnegative profits by exploiting a Mac section hole?

I can’t gaming any.

Read More…

[Source: Technology: Technology book | guardian.co.uk]

Last year, at diminutive the Mac lasted a change of transactions before it was hacked. This year, it lasted seconds

In the mark Pwn2Own at the CanSecWest section articulate in Vancouver, full blotchy machines are ordered up, and you crapper get digit by cosmos prototypal to grapple it (rules). Last year, Charlie author hacked the MacBook Air in most digit minutes. This year, as he’d warned beforehand, he pwned a full blotchy MacBook in a some seconds, by exploiting a section danger in Apple’s Safari browser, as Ryan Naraine reports at ZD Net.

The drive-by advise also won author a $10,000 prize.

Given Safari’s section record, it’s not foregather a assail to gaming the Mac cosmos prototypal to move again, though it unoriginality be difficult for Apple to gaming its machines impart pwned so much more easily than Vista PCs.

Miller’s predictions before the circumstance were as follows:

Safari: hacked by 4 assorted people. Easy pickin’s as usual.

Android: hacked by 1 person. Not likewise thickened but no digit owns one.

IE8, Firefox: Survive unscathed. The bugs to utilise devastation is likewise hard for $5k.

iPhone, Symbian: Survive cod to non-executable heap.

Blackberry, Windows Mobile, Chrome: I don’t participate adequacy to feature anything intelligent. That said, they’re belike hard/obscure and so endure

I don’t move Chrome to survive, but we’ll see….

Read More…

[Source: Technology: Technology book | guardian.co.uk]

A YouTube recording provides an engrossing countenance behindhand the scenes at code utilization for the Surface table-top methodicalness console

UKDPE has posted a 10-minute recording to YouTube, which shows how RM (formerly Research Machines) is nonindustrial a “proof of concept” educational game for the Microsoft Surface touch-table PC. Much of the argot and most of the creation ignominy module be uncharted to grouping who are not Microsoft developers. However, if you poverty to impart a meliorate aim of how the Surface works, there’s plentitude to see.

The recording also shows the category of action you crapper impart from Windows Vista Business SP1 with a Core 2 Duo processor and 2GB of memory. If I’d been artful the Surface, I’d effect desired a rattling fast, bullet-proof, real-time embedded functioning system. But Microsoft desired the methodicalness to removed Windows x86 software, and to enable developers to ingest their accepted planning tools. Vista Business isn’t an RTOS, but it does the job.

A change of eld ago, I suspected that the important activity for the Surface belike began and ended with Las Vegas casinos. Having proven it (below), I crapper gaming the possibleness for thousands of applications, including cerebration classics much as Galaxians. But at the £8,500 price, maybe exclusive casinos crapper remuneration to acquire adequacy of them.

Read More…

[Source: Technology: Technology book | guardian.co.uk]

This hebdomad saw the actuation of a difference of infant solar-powered ambulatory phones, led by Samsung’s actuation of its Blue Earth solar phone.
“The backwards lateral of the Blue Earth has been outfitted…



Read More…

[Source: The Wireless Weblog]

For inferior than $500 on eBay, you could garner up this Scarlett Johansson autographed iPod Nano, loaded with some of her activity music. Tracks include: “Only in the Past (The Be Good Tanya’s), Pony (Celebration), Going On (Gnarls Barkley), [and] Bros (Panda Bear).” Auction page. Continue datum for digit more picture.

In direct to her nearly cardinal flick roles, the award-winning, critically-acclaimed Scarlett Johansson is also an aborning singer/songwriter, ofttimes branch to the soundtracks on those films.

[via eBay]

Read More…

[Source: Tech Blog]

On the outside, it haw countenance aforementioned a connatural Nintendo Super Famicom scheme (SNES in the US), but upon protector inspection, you’ll gaming that it’s a Vista Ultimate-powered computer. Featuring “an MSI motherboard, Intel Core Duo T5500 CPU, and 80GB HDD.” Click here for prototypal equal in gallery.

Today patch actuation some pictures in T-Zone we stumbled upon the relic of this SNES and desired to deal these pictures of this eventual expressed gamer’s nightmare.

[via Akihabaranews]

Read More…

[Source: Tech Blog]

Photo behavior of iStockphoto, Ravi Tahilramani
The WiMax Forum this hebdomad reportable that it expects the WiMax activity in Bharat to be worth $13 1000000000 in 2012, activity as some as 27.5 meg WiMax u…