Pwn2Own is a hacking competition held annually at the CanSecWest security conference. Many companies are partnering up with this event to have their products tested by offering fairly encouraging rewards. This was not always the case, because a few years ago, a Korean researcher by the name of Jung Hoon Lee won the first prize in the competition and was awarded only $ 110,000. Since then, things have changed and this year, Tesla has once again joined the event, but the reward that the manufacturer offers this time is very impressive.
The company of Elon Musk offers a total of $ 1 million in cash as a reward and a free car to anyone who will be able to hack a Tesla model 3. This is quite standard especially when you know that in March of last year, the company had offered a Tesla Model 3 and $ 35,000 a hacker who had managed to get into his systems. This year’s award undoubtedly shows how confident the automaker is about the security system in its vehicle. It should be noted that Tesla cars come with 3 separate layers of security and each time one of these layers is compromised, a reward will be given to the hacker.
Level 1 is the one containing the first prize. This price will be awarded to those who are able to cross several security systems in the car, which means that they will need a complex chain of exploits to obtain the execution of arbitrary code on three different subsystems in the vehicle. Whoever is able to do so will win in cash the sum of $ 500,000 and a Tesla model 3. The amount of money for level 1 can nevertheless be increased to $ 700,000 if the winner is able to successfully overcome some additional hacking challenges.
Regarding levels 2 and 3, they are not as complex as the first, but still require fairly advanced skills. For level 2, the winner must be able to obtain the execution of arbitrary code on two different subsystems in the vehicle, which is certainly a difficult challenge. For this level, including the additional challenges to be met, the highest payment will be $ 500,000. Level 3 is just as difficult, but it will be enough for a participant to obtain the execution of arbitrary code on a single subsystem in the vehicle to claim the reward for this level.
Since 2007, Pwn2Own has become a cutting-edge competition that encourages new areas of vulnerability research on today’s most critical platforms. The Pwn2Own 2020 contest is set to take place from March 18 to 20, so if you have hacking skills, you might be tempted.
Source: BGR
And you ?
What do you think of these bug bounties? Would you participate in this kind of contest?
See as well :
Pwn2Own 2019: Hack the electric car software and win a Tesla Model 3 and almost a million dollars the flaw must be unreported Switzerland: up to $ 150,000 offered for a bounty bug on the online voting system as part of a public penetration test Switzerland: experts have detected serious problems in the online voting system even before the start of the bounty bug planned on this system
–
