Apple iPhone Hacked at Mobile Pwn2Own 2018

Once again, security researchers have demonstrated at a Pwn2Own event that fully patched mobile devices are at risk from zero-day vulnerabilities. At Mobile Pwn2Own 2018, held in Tokyo Nov 13-14, sponsor Trend Micro's Zero Day Initiative (ZDI) awarded a total of $325,000 to security researchers. Across the two-day event, researchers reported more than 16 new vulnerabilities, exposing risks in fully patched Apple iPhone, Samsung Galaxy S9 and Xiaomi Mi6 phones. "We were surprised to see how popular the Xiaomi handset was, with five targets," Dustin Childs, communications manager for ZDI, told eWEEK. "Another positive surprise was a full day of successes on Day 1. That’s a rarity for Pwn2Own."