Google patches Chrome in advance of hacker challenge

Pays researchers to find 19 flaws on eve of Pwn2Own

Having offered a $20,000 prize to anyone who could hack its Chrome browser at next week’s Pwn2Own contest, Google has paid almost as much to nine bug researchers to find flaws in Chrome.

Gregg Keizer writes in NetworkWorld that Google on Monday patched 19 vulnerabilities, after paying the researchers $14,000 to find them.

Google did the same thing last year before the Pwn2Own contest, hosted annually at the CanSecWest security conference in Vancouver, B.C. It was the only browser not successfully hacked at the 2010 conference.

The contest is organized by security software company TippingPoint, which was not going to invite Chrome this year after it was not hacked in 2010, TechCrunch reported. So Google put up $20,000 for anyone who can perform a sophisticated hack on Chrome.

In the contest, a successful attack must compromise the browser using a sandbox escape, exploiting Google code on a Windows 7 machine.

With the prize money offered by TippingPoint and Google, hackers stand to win a total of $125,000 for exploiting the Chrome, Internet Explorer, Firefox and Safari browsers, and the Windows Phone 7, Apple iOS, BlackBerry 6 OS and Google Android OS mobile phone OSes.

The conference will be held March 9-11.

About the Author

Kevin McCaney is a former editor of Defense Systems and GCN.

inside gcn

  • Congressman sees broader role for DHS in state and local cyber efforts

    Automating the ATO

Reader Comments

Sun, Mar 13, 2011 curt

this seems weak if you don't include all the major browsers... where's Opera for instance? why was that left out by google, hmmm?

Tue, Mar 1, 2011

Chrome was also the only browser not hacked in the 2009 Pwn2Own contest as well. See Chrome Is Like Teflon in Browser-Hacking Contest http://www.enterprise-security-today.com/story.xhtml?story_id=130004HDYPCK

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group