Samsung
Breaking: Samsung Galaxy S23 hacked twice in hacking contest
On the first day of Pwn2Own 2023 hacking contest, security researchers hacked the Samsung Galaxy S23 twice. It’s important to note that the device was running the latest software as well as the newer security patch.
According to the info, Pentest Limited was the first to demo a zero-day on the Galaxy S23 smartphone by exploiting improper input validation weakness to gain code execution, earning $50,000 and 5 Master of Pwn points.
Follow our socials → Google News | Telegram | X/Twitter | Facebook | WhatsApp
The STAR Labs SG team also exploited a permissive list of allowed inputs to hack a Galaxy S23, earning $25,000 (half prize for the second round of targeting the same device) and 5 Master of Pwn points.
Success! Pentest Limited was able to execute an Improper Input Validation against the Samsung Galaxy S23. They earn $50,000 and 5 Master of Pwn points. #Pwn2Own pic.twitter.com/VaLc1mnhiH
— Zero Day Initiative (@thezdi) October 24, 2023
Success! STAR Labs SG was able to exploit a permissive list of allowed inputs against the Samsung Galaxy S23. They earn $25,000 and 5 Master of Pwn points. #Pwn2Own pic.twitter.com/bHUbe6e8dP
— Zero Day Initiative (@thezdi) October 24, 2023
It’s worth noting that on the second day of the contest, the Galaxy S23 will again be tested (via BleepingComputer) by security researcher Le Xich Long and hackers at vulnerability research firm Interrupt Labs.