Security News > 2022 > May > Microsoft Teams, Windows 11 hacked on first day of Pwn2Own

During the first day of Pwn2Own Vancouver 2022, contestants won $800,000 after successfully exploiting 16 zero-day bugs to hack multiple products, including Microsoft's Windows 11 operating system and the Teams communication platform.
The first to fall was Microsoft Teams in the enterprise communications category after Hector Peralta exploited an improper configuration flaw.
Microsoft Teams was hacked a third time by Masato Kinugawa, who exploited a 3-bug chain of injection, misconfiguration, and sandbox escape.
Each of them earned $150,000 for successfully demonstrating their Microsoft Teams zero-days.
Other highlights from the first day of Pwn2Own include Marcin Wiązowski, Team Orca of Sea Security, and Keith Yeo demonstrating more zero-days in Windows 11 and Ubuntu Desktop,.
On the second day, Pwn2Own competitors will attempt to exploit zero-days in the Tesla Model 3 Infotainment System and Diagnostic Ethernet, Windows 11, and Ubuntu Desktop.
News URL
Related news
- Microsoft Will Remove the Free VPN That Comes With Windows Defender Soon (source)
- New Microsoft script updates Windows media with bootkit malware fixes (source)
- Microsoft has finally fixed Date & Time bug in Windows 11 (source)
- Microsoft shares workaround for Windows security update issues (source)
- Windows 10 KB5051974 update force installs new Microsoft Outlook app (source)
- FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux (source)
- Microsoft fixes bug causing Windows Server 2025 boot errors (source)
- If you dread a Microsoft Teams invite, just wait until it turns out to be a Russian phish (source)
- Microsoft to remove the Location History feature in Windows (source)
- Microsoft's End of Support for Exchange 2016 and 2019: What IT Teams Must Do Now (source)