Tuesday September 9, 2008 5:07 AM AEST

SC Magazine Australia/NZ > News > Access Control > Network Access > MacBook Air hacked in two minutes

Vulnerability Alerts

SANS

Microsoft

Microsoft Security Bulletin Advance Notification for September 2008
MS08-022 – Critical: Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338) - Version:2.1

CERT/CC

Latest Comments

"I would like to try the special 30 day offer"

on McAfee offers free trial of security appliance

by Julia Keene | Sep 9, 2008 1:02 AM

"hi.. i like google chrome. I need to know if in future, google is willing to upgrade google ..."

on Layered security in Google Chrome browser

by george s | Sep 7, 2008 1:52 AM

"I urge every business person and IT person, management or staff, to get hold of a copy of "I.T. ..."

on Bank of New York loses 12.5 million customer details

by John Franks | Sep 6, 2008 1:20 AM

""Google arrived on the browser scene with the launch of Chrome"... Seems a bit misplaced to ..."

on Google Chrome flaws discovered

by Jeme | Sep 5, 2008 12:33 AM

"Yes? And? So what? What were the recommendations of the report? What is the point of this ..."

on UK government blast TCP/IP security

by Tim | Sep 4, 2008 2:02 PM

Network Access

MacBook Air hacked in two minutes

By Andrew Charlesworth
Mar 31, 2008 9:34 AM
Tags: MacBook | Air | hacked | in | two | minutes

The contest was part of the CanSecWest security conference in Vancouver, and was won by Charlie Miller, one of the security researchers who cracked Apple's iPhone last year.

Miller walked away with the US$10,000 prize put up by the organisers, along with the MacBook Air he hacked.

No one was able to hack into any of the machines by attacking them over the network on the first day of the contest.

But Miller succeeded when the organisers allowed hackers to direct human operators of the three machines to visit websites and open emails.

Miller's exploit code was on a website and the Mac fell within two minutes. He was only able to use software preinstalled on the Mac, so experts assume that the vulnerability must lay with Apple's Safari browser.

However, Miller signed a non-disclosure agreement which means that the exploit will not be made public until Apple has been informed.

At the time of posting, the other two machines remain intact.

Ads by Google

Thoughts on this article? Add a comment below.

Be the first to comment on this article.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Most Read
Most Discussed
Latest News

Access Control Whitepapers

MacBook Air hacked in two minutes

Sponsored Links

SC MAGAZINE SITEMAP

CATEGORIES

News

Alerts

Products

Stats

Blogs

Photo Galleries

Whitepapers

Events

Jobs

Downloads

Vulnerabilities & Exploits

Breaches & Exposures

Messaging

Mobile

Access Control

Biometrics & Forensics

Legal

Risk Management

Job Centre

Patch Management