Has GNU/Linux Won Pwn2Own Again?

Dr. Roy Schestowitz

2009-03-20 14:25:30 UTC
Modified: 2009-03-20 14:25:30 UTC

Novell shield

Summary: GNU/Linux is a no-show, but it was last year's winner

A LOT of people may not remember this, but Apple's Mac OS X was the first to fall last year due to a flaw in Safari (proprietary) and Windows Vista was second. Ubuntu GNU/Linux, which was there for people to crack, stayed untouched until the end and thus won. It's a similar story this year, but having already emerged victorious, Mr. GNU/Linux did not bother attending to defend its title. This is of course a mostly tongue-in-cheek statement, but nonetheless, here is the coverage from Heise:

Safari was the first to fall this week at the Pwn2Own 2009 security competition held at the CanSecWest conference in Vancouver, Canada. The competition, sponsored by TippingPoint Technologies, awards a prize for each vulnerability found on various mobile phone platforms and internet browsers. Participants were invited to attack Internet Explorer 8, Firefox and Google Chrome on Windows 7 and Safari and Firefox on Mac OS X, each of which was fully patched.

Heise has another interesting story about Windows Trojans in ATMs

Windows Trojan on Diebold ATMs

Vanja Svacjer, a virus expert for Sophos, has reported his latest find in a blog entry: a Trojan that spies on PINs. The difference is that this example specialises in cash dispensers made by Diebold, which run Windows.

It is utterly foolish to run ATMs on Windows for reasons that we listed before using plenty of evidence.

As a side note, we still try to determine or at least wait for a response from Apple regarding its new headphones. Is the following report truthful? It is being actively challenged.

"Latest iPod Suggests that Apple Still Loves DMCA-Assisted Lock-in

Back in January, we noted that despite Steve Jobs's posturing on the music DRM front, Apple remains a big supporter and user of DRM and DRM-like schemes throughout their product lines. Over at the EFF blog, Fred von Lohmann suggests another potential example. The new iPod Shuffle has no buttons; the controls are on the included headphones.

Until Apple sheds some light it will remain an area that is hard to comment on. ⬆

Hate Mail From Anonymous Cowards: if this persists, we'll need to escalate
Informal Open Letter to the Lawyer of the Microsofters (on Who's Funding the SLAPPs Against Techrights): Whenever I ask about the funding they try to change the subject and act all aggressive
Microsoft Lunduke is Just Provoking People for Provocation's Sake: Be forewarned and remember where this guy came from: Microsoft
Slopwatch: Linux Journal, LinuxSecurity, and Google News With Its Slopfarms of Choice: SEO spam, made with LLMs
Follow the Money: The Register MS Gets Paid to Promote "Hey Hi" Ponzi Scheme/Hype, Some Fake 'Articles' Might Be Composed by LLMs Already: paid to promote slop
Gemini Links 09/08/2025: Rethinking Aliases and Posting on Gopher vs. the Web: Links for the day
Links 09/08/2025: Apollo 13 Astronaut Jim Lovell Dies, Slop Future Bleak: Links for the day
After Shutting Down Studios, Divisions, Applications (e.g. Skype) Microsoft is Also Shutting Down 'Apps': Cuts all around as layoffs persist this month, Microsoft tries to get many people to resign, and debt skyrockets
Most of Geminispace Can Probably Fit on a CD-ROM or a DVD (the Textual Part): If one excludes very large capsules and ones that contain non-textual contenty
Eventually UEFI 'Secure Boot' Will be Dropped (Users Will Demand Its Removal and Boycott Its Pushers): we expect OEMs will just listen to users
The Register MS: We Know Slop is a Bubble and Mindless Hype, But We Get Paid to Participate: Call out the culprits
There Are Probably Over a Million Pages in Geminispace: there are two many limitations which merit a mention when it comes to assessing magnitude
Besieged by Plagiarists Who Play With LLMs and Image Fusions: We really need to exercise or use our collective voice to oppose Serial Sloppers
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, August 08, 2025: IRC logs for Friday, August 08, 2025
Gemini Links 09/08/2025: Water Painting and Political Violence: Links for the day
Slopwatch: LLM Sloppers in Google News, LinuxSecurity, and More: they also perpetuate some falsehoods as the LLMs lack any comprehension
Links 08/08/2025: China King of Plastics and US Dictator Plans to Meet Russian Dictator: Links for the day
Gemini Links 08/08/2025: Cracking a Family Member's Password and Overdose of Slop: Links for the day
Red Hat's Latest Talent Hunt, Day Ahead of Mass Layoffs, is Yet Another Microsoft Executive: Red Hat will apparently commence mass layoffs early this coming Monday
Links 08/08/2025: "Quit Facebook" and High Cost of Microsoft/Windows Shown Again ("BlackSuit"): Links for the day
Good Morning, Readers of The Register MS: Things The Register MS could (but does not) cover this morning
Why Gemini Protocol Has a Bright Future: Maybe Gemini Protocol's promise becomes more appealing as the Web turns to slop and bloat
It's a Lot Easier to Participate in the Unethical System Than to Oppose Injustices in It: Going after powerful and high-budget interests is never easy
Microsofters Filed Two SLAPPs Against Us, Now They Cannot Keep Up With Judges' Orders: For over 4 months already their facilitator in London has been under investigation by British authorities because of what's being done to my wife and I
Censorship Regarding Red Hat Layoffs: Talk about this? They'd rather not.
Struggling to Cut Costs, Microsoft Continues Shutting Down and Cancelling Stuff This Month: There are August layoffs at Microsoft
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, August 07, 2025: IRC logs for Thursday, August 07, 2025
Fake 'Linux' Articles, Written by Bots to Take Traffic Away From Real Articles: LLM slop helps replace information with junk or misinformation
When Google's Googlebombing of "Gemini" Was Not Enough; They Now Also Googlebomb "Gemini Space"?: We know GAFAM not only worries about Gemini Protocol but also attempts to 'infiltrate' Geminispace
The Register MS Promotes Microsoft Slop, Assumes All Readers Use Microsoft Windows: Microsoft really dominates the site
Gemini Links 08/08/2025: KDE/Qt Development and What's Missing From "Retro": Links for the day
Links 07/08/2025: US Punishes India Instead of Russia, Attacks Law Firms to Prevent Scrutiny: Links for the day
Read Us in Geminispace as Well: it's definitely a lot simpler than using a Web browser
Once a Site About BSD and GNU/Linux, and After Months of Silence, LinuxBSDos.com Comes Back Only as a Slopfarm: very frustrating
Links 07/08/2025: Hardware Wars, Mass Recall of Colgate Total Clean Mint, More Microsoft Holes Found: Links for the day
Gemini Links 07/08/2025: "Right To Manage" and LoRa Analysis: Links for the day
For the First Time in a Month OSI's "OpenSource.org" Blogs and It's Basically a Microsoft Blog Post (Microsoft Controls OSI): For the first time in a month OSI writes something and it is Microsoft propaganda composed by a Microsoft-salaried operative
Microsoft, Already Borrowing 3 Billion Dollars a Month, is Trying to Cause Many People to Resign: MSN (i.e. Microsoft) and others openly admit it
GAFAM 'Says' is Front Page "News": The point of journalism is to check and assess facts, not parrot what people and companies merely claim
Links 07/08/2025: Apple Makes False Promises, More Trouble for Microsoft: Links for the day
OSS Didn't Always Mean Open Source Software: "oligarchs all the way down"
The Register MS Does More Microsoft Sez or GitHub Sez (Says) Pieces: 60 minutes ago
They Want Activists to Just Barely Walk and Eat, Not Do Activism Anymore: It's sort of like the ending of '1984'
Quit Perpetuating the Narrative of Gemini Protocol 'Dying' (It's False): The "whisper campaign" against Gemini Protocol
Criticising Social Control Media in Social Control Media: Many people are quitting Social Control Media (fewer of them announce this in public)
Non-Free JavaScript Programs in Banks Aren't Even the Biggest Problem: Technology was supposed to make life easier; in practice, however, for most of us the opposite effect can be observed
Slopfarms Are Typically Fake News: Slopfarms typically relay falsehoods
Gemini Links 06/08/2025: Replacing a Pocket Watch and Buying in Bulk: Links for the day
IBM is Obliterating Fedora: "Fedora releases were shipping with an increasing number of bugs on launch day even while I was using it for a several year stretch."
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Wednesday, August 06, 2025: IRC logs for Wednesday, August 06, 2025

Has GNU/Linux Won Pwn2Own Again?

Windows Trojan on Diebold ATMs

"Latest iPod Suggests that Apple Still Loves DMCA-Assisted Lock-in

Recent Techrights' Posts