back to article Pwn2Own contest concludes with nearly $1m paid out to ethical hackers

Pwn2Own paid out almost $1 million to bug hunters at last week's consumer product hacking event in Toronto, but the prize money wasn't big enough attract attempts at cracking the iPhone or Google Pixel because miscreants can score far more from less wholesome sources. "We were offering our top award for those," said Dustin …

  1. DS999 Silver badge

    Even if you don't want to sell to the underworld for $15 million

    Apple will pay $1.5 million for a zero click exploit, so why would anyone give it to Pwn2Own for $250K?

  2. Lil Endian Silver badge

    You are your integrity.

    I've worked with some reasonably sensitive stuff.

    "Do you have professional indemnity insurance...?" "Are you security cleared to level x?"

    I think it's important to clarify to stakeholders: I'm a programmer, I have unlimited potential to create havoc.

    If I ever act nefariously, my life is worthless.

    [Limits can be applied, but they're also circumventable.]

  3. Missing Semicolon Silver badge

    Risk of detection?

    I can have £40,000 now, in my bank account, and possibly a job.

    Or I can have £400,000, and spend my life waiting for the knock on the door.

    1. elsergiovolador Silver badge

      Re: Risk of detection?

      You can still get a knock on the door if you expose a vulnerability that has been used by services.

      The tax payer then will have to pay OEM to create a new vulnerability to use.

    2. Black Label
      Black Helicopters

      Re: Risk of detection?

      "Or I can have £400,000, and spend my life waiting for the knock on the door."

      Or you can have the £400,000 and a signed contract avoiding all legal liabilities to yourself - for use or bad-use of the vulnerabilities / penetration security services you sold to third-parties.

      Also should keep some encrypted juicy code / vulnerabilities to reliable important partners, so, when the time comes, your "player pass" is worth more than a sting job. And you are most likely safe from any foreign influence operation. Strategy.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like