Chrome, Edge, Safari and Office 365 are easily breached in a security competition in China

To reschedule, in the middle of November every year, the most "famous" names in the information technology industry in general and cybersecurity in particular gather in Chengdu, China. Korea to compete in the Tianfu Cup, the highest hack contest of the country of billions of people.

These are all leading Chinese hackers (mostly white hats), with influence in the domestic and international security community. This year's event has a total of 48 test sessions, of which the most popular is the zero-day implementation of a number of popular software and applications on the market. If successful, the hackers will receive cash prizes, witnesses, and especially fame to the wind as the winner of a prestigious hack contest.

Day 1: Safari, Microsoft Edge, Google Chrome and Office 365

Tianfu Cup takes place in 2 days from 16 to 17/11. The first day was the busiest day of the entire event with 32 hacking sessions planned. Of those, there were 13 successful sessions, seven hacking sessions failed and in the remaining 12 sessions security researchers decided to give up for various reasons. However, there have been many famous technology applications and applications that have been successfully 'conquered', specifically as follows:

(3 successful exploits) Microsoft Edge (old version based on EdgeHTML tool, not new Chromium version)

1. (2) Google Chrome
2. (1) Safari
3. (1) Office 365
4. (2) Adobe PDF Reader
5. (3) Router D-Link DIR-878
6. (1) qemu-kvm + Ubuntu

360Vulcan is the most prominent name in the first 'competition' day with $ 80,000 in prize money for successful hacking the qumu-kvm + Ubuntu.

Second day: VMware was knocked out with $ 200,000 in prize money

Of the 16 events planned for the second day of competition, only half went as planned, and there was only one successful case, but the prize was extremely large. to 200,000 USD.

The owner of the dream prize money continues to belong to the 360Vulcan team with a successful exploitation of the flaw on VMWare Workstation.

All security holes discovered at Tianfu Cup 2019 as well as the way of exploiting these holes will be specifically reported to the respective suppliers. Such contests have a particularly important role for the security community in general and the application vendors in particular. Hackers will get remuneration as well as reputation, while providers will get the most perfect service to bring to users.