START A PETITION 25,136,189 members: the world's largest community for good
START A PETITION
x
Oct 12, 2012

A teenage hacker who goes by the name of “Pinkie Pie” will receive $60,000 in prize money from Google, by producing the first Chrome vulnerability at the Hack in the Box conference on Wednesday. The exploit was discovered and successfully launched just ahead of the deadline for completion, according to early reports from the event. Before awarding the cash prize, Google had to first verify and confirm the vulnerability – which it just now did, the company tells us via email. More details have also been posted to the Google Chrome blog.

According to the blog post, the hack involves the following exploit:

[$60,000][154983][154987] Critical CVE-2011-2358: SVG use-after-free and IPC arbitrary file write. Credit to Pinkie Pie.

Google has set aside $2 million in prize money for hackers who find security vulnerabilities in its Chrome web browser, with $60,000 being reserved for those who find “full Chrome exploits.” $50,000 which is offered for partial exploits, and $40,000 for non-Chrome exploits – that is, other bugs found in Flash, Windows, or a driver that are not necessarily specific to Chrome, but could cause issues for users. Google said in February that it would awards those latter prizes because it also served the company’s overall mission of “making the entire web safer.” (The prize amounts have since changed.) Incomplete exploits may also be rewarded, based on judges’ decisions.

This is the second time “Pinkie Pie” has earned the top prize. In March, the hacker also earned $60,000 in the first “Pwnium competition” (as the event is called) by stringing together six vulnerabilities in order to break out of Chrome’s sandbox. According to a report from Infoworld, the hacker was not attending the Hack in the Box event this week, but had a colleague submit his latest entry for him.

In case you’re curious, the hacker is only identified by his handle “Pinkie Pie” because his employer doesn’t authorize his activity, noted Wired in March. (And yes, “Pinkie Pie” refers to the My Little Pony TV show, which has quite the following on Reddit).

Google has been offering cash rewards for those discovering security vulnerabilities and other bugs for some time. In March 2010, for example, the company began offering bounties for bugs found in the open-source browser Chromium (Chrome’s code base), which started at $500 and went up to $1,337 (yep, “leet” in hacker lingo).

Visibility: Everyone
Posted: Friday October 12, 2012, 12:35 am
Tags: black hawk news guide mines adventures blackhawk B06N [add/edit tags]

Group Discussions
Comments
Or, log in with your
Facebook account:

Author

Howard L.
female ,
USA
HOWARD'S SHARES
May
27
(0 comments  |  discussions )
\nOne of the most popular and maybe the most needed safety gear is helmet but one of the best skiing safety tips is really a matter of personal choice – to wear, or not to wear.  Although it isn’t really mandated, it is encouraged to u...
Mar
26
(0 comments  |  discussions )
\nhttp://blackhawk-mines. com/2013/03/22/outdoor-ad ventures-in-thailand/\r\n Do I have to tell you why Thailand, well then let me give you reasons why you of all countries will enjoy this country if you love outdoors!\r\n\r\nHave you tried caving, if not then ...
Feb
27
(0 comments  |  discussions )
\n\nFirst things first, why do you go on camping?  Is camping really fun?  The outdoor is a great experience to anyone.  The adventure of living in the outdoors makes camping fun for everyone.  Camping is an escape of the hustle and ...
Feb
5
(0 comments  |  discussions )
\n\r\nhttp://www.zimbio.c om/General/articles/G-GGs 2gUMTD/Chinese+coal+equip ment+fraud+burns+almost?a dd=TrueCaterpillar Inc. (NYSE:CAT) announced late on Friday that it will take a charge of $580 million related \r\nto accounting fraud at a recently ac...


SHARES FROM HOWARD'S NETWORK
No shares


MORE MEMBER BLOGS
Mar 31
Blog: How to Extend the Life of your TRIAD Boilers by Kayleigh L.
(0 comments  |  discussions ) — \\nHow to Extend the Life of your TRIAD Boilers \\r\\n \\r\\nCorlis Engine Review\\r\\nEvery user desires to prolong the life of a unit. TRIAD assists their clients in achieving this important objective by informing them of ways they can avoid problems... more
Feb 27
Blog: Dr Oz Weight Loss - The 100% Natural And Very Efficient Diet Pill by Debra S.
(0 comments  |  discussions ) — \\nYes, Dr. Oz called Garcinia Cambogia Extract (HCA) the Holy Grail of Weight Loss. He went on to say, “Anytime I see a scientist get this excited about something like Garcinia Cambogia Extract and when I looked through some of this research and... more
Blog: My Favorite Websites by krysta I.
(0 comments  |  discussions ) — \\nIFAW: www.ifaw.org\\r\\nOCEANA www.oceana.org\\r\\nPETA: www.peta.org\\r\\nEARTH 911: www.earth911.org\\r\\nANI MALs ASIA: www.animalsasia.org\\r\\n \\r\\n\\r\\n\\n more
Feb 21
Blog: testing one two three by Geoff M.
(0 comments  |  discussions ) — hello world more
Blog: Garcinia Cambogia Reviews From Actual People Garcinia Pure Extract Is A Huge Success February 20 by Dany M.
(0 comments  |  0 discussions ) — \\nGarcinia Cambogia Reviews From Actual People Garcinia Pure Extract Is A Huge Success February 20\\r\\nGarcinia Cambogia System The Dr. Oz Lose Weight Quick Process Without Having Side Effects\\r\\nHe went on to say, “At any time I see a researcher... more
 
Content and comments expressed here are the opinions of Care2 users and not necessarily that of Care2.com or its affiliates.