Participants in the Tianfu Cup 2020 managed to successfully hack several popular software, including Windows 10, Ubuntu, and the Chrome browser. The winner received $744,500 for taking the first place.
Tianfu Cup is the largest and most prestigious hacking contest in China. This year’s contest was with 15 participating teams.
Held in the city of Chengdu, in central China, the third edition of the Tianfu Cup ended earlier today.
The entire prize pool awarded this year is $1,210,000.
The winner list looks as follows.
- First place - 360 Enterprise Security and Government and (ESG) Vulnerability Research Institute (Qihoo 360), the prize is $744,500, for its exploits.
- Second place - Ant-financial Light-year Security Lab, $258,000
- Third place - Pang, the security researcher, $99,500
Successful exploits were confirmed for the following software:
- Windows 10 2004
- iOS 14 on iPhone 11 Pro
- TP-Link WDR-7660
- Mozilla Firefox
- VMWare ESXi
- Adobe PDF Reader
- ASUS AX86U (a router)
- Google Chrome
- Apple's Safari browser
- Ubuntu 20
- CentOS 8
- Samsung Galaxy S20
The participants had three attempts, five minutes each, to hack their chosen target using the original exploit. For each successful attack, the researchers received a monetary reward that varied depending on their chosen target and type of vulnerability.
Reportedly, the relevant software vendors have already been informed of the discovered vulnerabilities, so their users will receive fixes soon. Patches for all bugs identified over the weekend will be provided in the coming days and weeks, as is usually the case after each TianfuCup and Pwn2Own competition.