The second annual Mobile Pwn2Own competition, run by HP TippingPoint's Zero Day Initiative, is fast approaching. This year's event will take place at the PacSec Applied Security Conference in Tokyo from November 13-14, and over $300,000 in cash and prizes is up for grabs. The Pwn2Own contest challenges security researchers to find and exploit vulnerabilities on mobile devices and rewards them by giving them the device they were able to compromise. In short, a contestant must "pwn" a device in order to own it. This year's event is sponsored by Google's Android Security Team and BlackBerry.


Contestants can receive $50,000 for compromising a mobile device using Bluetooth, Wi-Fi, USB, or NFC. $40,000 is available to those who can do so via a mobile web browser ($50,000 if that browser is Chrome running on the Nexus 4 or Galaxy S4), app, or the operating system itself. $70,000 goes to anyone who can exploit SMS, MMS, or CMAS; and the highest prize, $100,000, goes to the contestant that is able to break in via baseband.

Here is a list of the available targets that contestants will seek to compromise and win:

  • Nokia Lumia 1020 running Windows Phone
  • Microsoft Surface RT running Windows RT
  • Samsung Galaxy S4 running Android
  • Apple iPhone 5 running iOS
  • Apple iPad Mini running iOS
  • Google Nexus 4 running Android
  • Google Nexus 7 running Android
  • Google Nexus 10 running Android
  • BlackBerry Z10 running BlackBerry 10

To register for the contest, shoot ZDI an email. Just be sure to read the eligibility requirements and the contest rules beforehand.

Source: HP

Via: Twitter