http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/ Engadget Comments for http://www.engadget.com/media/feedlogo.gif http://www.engadget.com en-us Copyright 2012 Weblogs, Inc. The contents of this feed are available for non-commercial use only. Blogsmith http://www.blogsmith.com/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 6:09AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 6:13AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/ not interesting -> no Opera in this contest. 2. hackers think that only a few users use Opera, maybe only users who know their system, so it's not interesting again.
In the end this means, Opera is the best browser, because no hacker cares about Opera or no one is able to hack, or it's just too difficult, it at the moment.
Regardless of these facts is Opera the best browser in my opinion and now even the safest, just great. :p]]>Mar 19th 2009 6:45AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:09AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:07AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:51AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 8:07AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
Apparently, opera doesn't have the best spelling or grammar check...]]>Mar 19th 2009 8:55AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
What about the possibility that the organisers thought Opera's security was a total joke, and couldn't afford to pay out on all the exploits?

I'm just saying, that would also explain Opera's absence. But your logic works, too. Feel free to believe yourself invincible.]]>Mar 19th 2009 9:32AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/ http://dvlabs.tippingpoint.com/blog/2009/02/25/pwn2own-2009 You will note the discussion surrounding Opera's not being there by the organizers down in the comments section. Was that so hard?]]>Mar 19th 2009 10:31AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/As it is an american thing, they consider the American market as a good image of the world's market (which is obviously not true) so they didn't pick Opera, whereas it has around 5% market share in europe for exemple (where safari has less than 3%).

]]>Mar 19th 2009 10:56AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 1:15PMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/...quite small area blanked out :( poor fellow.]]>Mar 19th 2009 6:14AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 6:16AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 6:33AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 6:41AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:20AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
It explains why his right hand is in such an akward position, and why his right leg seems blurry.

ZOMG CONSPIRACY.]]>Mar 19th 2009 8:52AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
its beta i think....???

is it not biased?]]>Mar 19th 2009 6:22AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 8:08AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 20th 2009 4:12PMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
A Malicious link is all it took to bring down glorious Apple programming.]]>Mar 19th 2009 6:38AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
Also, there's no such thing as an unbiased news source, not even close.]]>Mar 19th 2009 6:42AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:16AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 8:21AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 8:57AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 8:58AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
It's not surprising it was compromised either because QuickTime alone has the potential for a few thousand more exploits. Unless Apple sandboxes Safari, it's not going to be secure.

What will be really interesting is whether the iPhone will be hacked. That's a different beast entirely, and all iPhone apps are sandboxed. Sandboxing means you can't compromise the system via a single app - not even mobile Safari. It's the only security concept that can work, and the iPhone is the only OS / device that has it.]]>Mar 19th 2009 9:17AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 9:20AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
Besides, we don't know what version of Safari was used. It might have been the Safari 4 beta.]]>Mar 19th 2009 9:30AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 9:35AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Actually the man who actually did the breach said that his reasoning behind going after the mac first was that the others were too hard, he even thought they wouldn't be breached (even though they were)]]>Mar 19th 2009 10:02AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 10:25AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
The contest's credibility is suspect at best, or more likely crap. Did they even bother to have the original rules this year? Or would they get in the way of giving Safari, Firefox and IE8 a Nelson-like "ha ha." Let's not even talk about how clicking on a link the guys' had weeks and weeks to prepare is hardly hacking in a second.

I'll have to read up on how it actually went. Because lord knows we're not going to get all the facts that might be inconvenient in tell us exactly how IE 8, Safari and Firefox were ACTUALLY happened, and how it actually applies to how we use our browsers on a daily basis.

Why don't all you bozos casting aspersions without knowing the facts admit you don't really want the facts that makes such an event way more boring than frightening.]]>Mar 19th 2009 12:02PMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 2:17PMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
Anyway this has absolutely nothing to do with OS security because it is the browser that ended up getting compromised and not really the OS. Oh and just because Windows 7 is still in beta stage does not mean that you shouldn't include it in tests. It's good to have an idea of what the future might hold for your computer. ]]>Mar 25th 2009 8:05PMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/The exploited used to pwn the IE8 Beta actually DOESN'T work in the IE8 RTW on a fully patched Vista. There is an article on the Pwn2own website. So, in all actuality the exploit was already fully patched by the time anyone demonstrated it.]]>Mar 29th 2009 9:30PMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/

Oh wait, if users stop being stupid and don't click on everything they see, then they might be.

Also, NoScript.]]>Mar 19th 2009 6:27AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 6:28AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
I mean I love it, but something's wrong there. Maybe they didn't try hard enough?]]>Mar 19th 2009 6:48AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
But the contest isn't over it seems.]]>Mar 19th 2009 6:51AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
]]>Mar 19th 2009 6:52AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:44AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:13AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:52AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/That says a lot for the potential in open source security, espeically considering Ubuntu is considered to be one of the relatively insecure Linux distributions.]]>Mar 19th 2009 9:23AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/The most secured OS in the world is OpenBSD which is Open source.

Open source software tend to be more secure because several (group of) people read the code from a different point of view whereas a team of devellopers working on a project all together will all see the code the same way.
Much better way to discover vulnerabilities.]]>Mar 19th 2009 10:56AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/Mar 19th 2009 7:07AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
From the title of the article: All three browsers hijacked and exploited on day one.
From the text of the article: All three browsers failed miserably, oh, and BTW, a few hours ago Balmer came out and made a wild statement that has just been proven wrong.

I know you need a daily anti-apple/anti-engadget/go-winmo rant a day, but lay off the meth and read the actual article instead of sounding like a complete paranoid tool... ]]>Mar 19th 2009 7:37AMhttp://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/http://www.engadget.com/2009/03/19/the-pwn2own-trifecta-safari-ie-8-and-firefox-exploited-on-day/
Take a breath and chill out. I mean, it's not like this is something important. If you want to get annoyed about something that actually matters, get annoyed at AIG.]]>Mar 19th 2009 7:58AM