informa
2 min read
article

China's Hackers Crack Devices at Tianfu Cup for $1.5M in Prizes

China's premier hackers will target web browsers, operating systems, mobile devices, and even a car at Tianfu Cup.

Competitions such as Pwn2Own give talented hackers the opportunity to crack products from some of the world’s largest technology companies. This weekend is China’s equivalent hacking competition: the Tianfu Cup, in Chengdu, China, Oct. 16 to Oct. 17.

The Tianfu Cup is modeled after Pwn2Own in that hackers try to break into the latest devices and systems using original, never-before-seen methods. The competition hosts three concurrent tournaments to demonstrate vulnerabilities, crack devices, and compromise operating systems. The device-cracking part of the tournament, where teams have three five-minute attempts to crack a device using an original vulnerability, offers the largest monetary awards.

Targets this year include Google’s Chrome browser running on Windows 10 21H1, Apple’s Safari browser running on a MacBook Pro, Docker-CE installed on a server running Ubuntu Server 20.04, Linux operating system Ubuntu 20 and CentOS 8 installed on a Lenovo L14 system, Microsoft Exchange Server 2019, Windows 10, VMware Workstation and ESXi, Parallels Desktop, iPhone 13 Pro, Synology DS220j network-attached-storage device, and a ASUS Router AX56U. A “domestic new energy vehicle” is also listed for a $50,000 prize.

The total prize money for this year’s competition amounts to $1.5 million.

Hacking the iPhone 13 Pro yields the highest prizes, with a $120,000 prize fore a remote code execution exploit, $180,000 for a remote code execution exploit coupled with a sandbox escape, and a $300,000 prize for a remote jailbreak.

Read more here.