Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

Over $1 Million Paid Out at Pwn2Own Ireland 2024

Pwn2Own Ireland 2024 participants have earned over $1 million for camera, printer, NAS device, smart speaker and smartphone exploits.

The Pwn2Own Ireland 2024 hacking competition organized by Trend Micro’s Zero Day Initiative (ZDI) has come to an end and participants have earned over $1 million for camera, printer, NAS device, smart speaker and smartphone exploits.

On the first day of the event, white hat hackers earned a total of more than $500,000. On the second day, they earned over $350,000, including $50,000 for a Samsung Galaxy S24 exploit. 

On the third day of Pwn2Own Ireland 2024, participants brought the total to nearly $1 million, earning between $3,000 and $25,000 for successfully demonstrating exploits against a QNAP router, Canon and Lexmark printers, a Lorex camera, and TrueNAS, QNAP and Synology NAS devices.

There were only four attempts on Friday, the last day of Pwn2Own. Hackers demonstrated exploits targeting a Lexmark printer, a TrueNAS NAS device, and a QNAP router. One attempt chained vulnerabilities in both the QNAP router and the Lexmark printer. 

Participants earned a total of $73,000, bringing the event total to $1,066,625 for over 70 new vulnerabilities. The total payout is roughly the same as at last year’s event

The Viettel Cyber Security team was declared the winner, earning a total of $205,000. 

ZDI had also offered rewards of up to $250,000 for Pixel 8 and iPhone 15 exploits, and $300,000 for WhatsApp exploits, but no one signed up to hack these products.

Related: Hackers Earn $1.3M for Tesla, EV Charger, Infotainment Exploits at Pwn2Own Automotive

Related: Tesla, OS, Software Exploits Earn Hackers $1.1 Million at Pwn2Own 2024

Advertisement. Scroll to continue reading.

Related: VMware Patches Vulnerabilities Exploited at Pwn2Own 2024

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join SecurityWeek and Hitachi Vantara for this this webinar to gain valuable insights and actionable steps to enhance your organization's data security and resilience.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

Jared Bartel has been named CISO at Idaho State University.

Automated phishing protection and scam prevention company Bolster has appointed Rod Schultz as CEO.

Bugcrowd has appointed Trey Ford as CISO for the Americas.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.