Pwn2Own is one of the world’s largest and most prestigious cybersecurity competitions, where white-hat hackers and security researchers from around the globe compete to identify and exploit zero-day vulnerabilities (previously unknown security flaws) in widely used devices such as smartphones, security cameras, office equipment, and software used by businesses.

At Pwn2Own 2024, Viettel’s cybersecurity team identified and exploited nine zero-day vulnerabilities in products from companies such as HP, Canon, Synology, and QNAP Systems, earning a total of 33 points—almost double that of the second-place team, Team Cluck from the United States, with 17.25 points. Other teams in the ranking included Midnight Blue from Europe, Neodyme from Germany, and DEVCORE from Taiwan (China), all of whom have previously competed and achieved high results in Pwn2Own and other cybersecurity competitions.

The reward for each identified vulnerability ranges from $20,000 to $50,000, with the total prize pool at Pwn2Own approximately $1 million. Viettel’s cybersecurity team received over $200,000 in prizes. The vulnerabilities discovered by VCS also aid manufacturers in improving device security, preventing the leakage of personal and business data.

Pwn2Own 2024 featured eight categories, focusing on AI-integrated devices that required security experts to understand both source code and how AI systems store, process, and operate data within the devices. Viettel’s cybersecurity team successfully exploited vulnerabilities in categories such as surveillance cameras, smart speakers, printers, network-attached storage (NAS), and SOHO routers.

This year’s challenge was elevated by the fact that most AI devices included features like automated user detection and authentication via machine learning, as well as dynamic protection layers capable of updating and adapting to detect unusual behaviors. These features made it harder to locate and exploit vulnerabilities.

The devices involved are developed by major technology companies, undergoing rigorous testing and constant security updates. Therefore, Pwn2Own is not only a competition among cybersecurity research teams but also a “competition” against major tech firms.

On each device, VCS examined the source code and tested possible attack scenarios. The team targeted rare and complex vulnerabilities, aiming for those unlikely to overlap with other groups, to perform live demonstrations and gain access or control over the devices (duplicate vulnerabilities are not considered valid).

The devices in which VCS found and exploited vulnerabilities at Pwn2Own 2024 included the Lorex 2K security camera, Synology TC500 AI camera, Ubiquiti AI Bullet camera, Sonos Era 300 smart speaker, HP Color LaserJet Pro printer, Canon imageCLASS MF656Cdw printer, QNAP TS-464 storage device, and TrueNAS Mini X storage device.

Pwn2Own has been organized by the Zero Day Initiative (ZDI) since 2007. ZDI, a program established by cybersecurity firm Trend Micro in 2005, promotes the discovery and disclosure of zero-day vulnerabilities to protect users. When a vulnerability is reported through ZDI, the program coordinates with the device or software developer to resolve the issue, ensuring network security and user safety.

media

download
Image size: 1.8 MB

Related news

Press Release Viettel Launches the World’s First O-RAN 5G Network Utilizing Qualcomm 5G RAN Platforms
Hanoi, November 13, 2024 – At the 5G Open RAN Connect conference held at the Viettel High Tech headquarters in Hanoi, Viettel announced the commercial launch of its Open RAN (O-RAN) 5G Network, featuring key equipment developed in-house. This marks the world’s first O-RAN 5G network utilizing Qualcomm Technologies’ 5G RAN platforms. Viettel is deploying over 300 sites across various Vietnamese provinces by Q1 2025, with the potential for thousands more as part of nationwide and international expansion plans in 2025 and beyond. This milestone positions Viettel as a leading advocate in the O-RAN community and marking it as one of the largest carriers to launch a commercial O-RAN network.
Press Release | Nov 13, 2024
View more
Press Release Vietnam’s President Praises Viettel Peru for Demonstrating Vietnam’s Capabilities On the International Stage
On the morning of November 13 (Vietnam time), Viet Nam’s President Luong Cuong visited and worked with Bitel – Viettel's brand in Peru – as part of his state visit to the Republic of Peru and participation in the APEC Economic Leaders' Week. On November 12, Bitel celebrated its 10th anniversary in business and officially launched its 5G service in Peru.
Press Release | Nov 13, 2024
View more
Press Release Fortune names Viettel as a leading company for positive social impact
In Fortune's "Change the World 2024" rankings, Viettel Group ranks 3rd among over 50 global companies contributing significantly to sustainable development and positive social impact.
Press Release | Nov 08, 2024
View more
Press Release Viettel Group appoints two new Deputy General Directors
On the morning of November 2, Mr. Cao Anh Son and Mr. Nguyen Dat were officially assigned the roles of Deputy General Directors of Viettel Group.
Press Release | Nov 03, 2024
View more
Press Release The Prime Minister Commends Viettel's Cybersecurity Team
On November 1, Prime Minister Pham Minh Chinh sent a letter commending Viettel's cybersecurity engineers for their achievement of winning the championship for two consecutive years at Pwn2Own, one of the largest and most prestigious cybersecurity competitions in the world.
Press Release | Nov 02, 2024
View more
Press Release Viettel Launches Vietnam's First 5G Network and Celebrates 20 Years of Mobile Service
On October 15, 2024, in Hanoi, Viettel Group officially launched the country’s first 5G network.
Press Release | Oct 15, 2024
View more
Press Release Viettel Retains Position as the Most Valuable Brand, Leading in Sustainability in Vietnam
In the recently released Top 100 Most Valuable Brands in Vietnam 2024 by Brand Finance—a leading global brand valuation firm—Viettel Group has maintained its position for the ninth consecutive year as the most valuable brand in Vietnam. Viettel is also recognized as the most highly rated company for sustainable development by the public.
Press Release | Oct 15, 2024
View more
Press Release Viettel reaches 4G coverage for 95% of the population, contributing to the national digital transformation goal
As of National Digital Transformation Day 2024 (October 10), the Viettel Group has achieved 4G coverage for 95% of the population, fulfilling the timeline to shut down 2G networks nationwide ahead of schedule.
Press Release | Oct 11, 2024
View more
Press Release Prime Minister Presents National Innovation Award to Viettel
At the 2024 Innovation Day, Prime Minister Phạm Minh Chính presented the National Innovation Award to the Military Industry and Telecommunications Group (Viettel).
Press Release | Oct 02, 2024
View more
Library
TIME FROM
TO
TOPIC
Format
View more
Library

Filter

View more
công ty thành viên
VIETTEL GROUP
Enterprise code: 0100109106 issued by Hanoi Authority for Planning and Investment for the first time on July 13, 2010, revised for the 18th time on January 11, 2022. Representative: General Director Tao Duc Thang.

© Viettel 2024

Privacy Policy TERMS OF USE Viettel Official Channels
Banner-BQP1 Banner-BQP2