HP Researchers to Compete Against Google in Pwn4Fun
While at Pwn2Own, independent security researchers square off against each other hacking Web browsers for prize money, at Pwn4Fun, HP's staff will compete against Google's staff.Hewlett-Packard and its Zero Day Initiative (ZDI) effort sponsor the Pwn2Own contest every year at the CanSecWest conference. At Pwn2Own, independent security researchers square off against each other hacking Web browsers for prize money. Never before has HP's own researchers participated in the actual hacking contest, but that is now set to change. HP is announcing today the Pwn4Fun event at Pwn2Own, where HP ZDI staff will compete against Google staff to see who can hack browsers with new previously undisclosed exploits. In the regular Pwn2Own event, researchers are awarded prize money for successful exploitation of Microsoft's Internet Explorer 11, Mozilla's Firefox, Apple's Safari and Google's Chrome Web browsers. This year's Pwn2Own event will include a special $150,000 prize for a researcher who is able to successfully exploit IE 11 running on a 64-bit Windows 8.1 operating system, with the Enhanced Mitigation Experience Toolkit (EMET) running. For the Pwn4Fun event, instead of giving HP and Google researchers prize money, HP is donating money to charity. For an IE or Chrome exploit, HP will donate $50,000; for a Flash exploit, $37,500 will be donated. The Canadian Red Cross will be the recipient. Brian Gorenc, manager of Vulnerability Research at HP's Security Research division, told eWEEK that his team will be limiting itself to vulnerabilities discovered internally by members of the ZDI team.