Security News > 2021 > November > Pwn2Own: Printer plays AC/DC, Samsung Galaxy S21 hacked twice

Pwn2Own: Printer plays AC/DC, Samsung Galaxy S21 hacked twice
2021-11-05 17:25

Trend Micro's ZDI has awarded $1,081,250 for 61 zero-days exploited at Pwn2Own Austin 2021, with competitors successfully pwning the Samsung Galaxy S21 again and hacking an HP LaserJet printer to play AC/DC's Thunderstruck on the contest's third day.

Sam Thomas from team Pentest Limited was the one who compromised the Samsung Galaxy S21 running the latest Android 11 security updates on the third day using a unique three-bug chain and earning $50,000.

The Samsung Galaxy S21 escaped a hacking attempt on the first day after F-Secure Labs' Ken Gannon didn't get his zero-day exploit to work within the allotted time.

Mr L and Nguyễn Hoàng Thạch of STARLabs were able to get code execution on the Samsung Galaxy S21 on the second day of Pwn2Own.

The third day of Pwn2Own also saw the F-Secure Labs team turning an HP LaserJet printer into a jukebox using a stack-based buffer overflow to play AC/DC's Thunderstruck.

You can find recap videos for all four days of Pwn2Own embedded below.


News URL

https://www.bleepingcomputer.com/news/security/pwn2own-printer-plays-ac-dc-samsung-galaxy-s21-hacked-twice/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Samsung 1618 128 354 396 74 952