[Swordmaker]

Hack a Mac finds a hole in Safari after rules and security lowered... PING!

Both Macs survive first 24 hours... Next 24 hours allows hackers to send a URL to the Mac users who will then navigate to that site. Almost 3 hours into the new rules, one Mac allowed a hacker a current user level access!

Exploit requires navigation to a malicious website... no other information being released. All versions of Safari and OS X are vulnerable.

If you want on or off the Mac Ping List, Freepmail me.

[doc1019]

The only reason the MAC has not been hacked; all the hacking resources have been aimed toward MS. Sounds like life as we know it is about to change.

[antiRepublicrat]

I stated earlier I thought someone would be successful, given the gradual widening of the attack surface. Only got User though, my prediction is that nobody gets root unless they seriously relax the security on the target box that’s left.

[6SJ7]

Interesting no details of the 'exploit' are provided. I'm dubious after the previous so-called hacker challenge on OS X where it was later revealed a 3rd party WiFi card had been installed to 'help' the hack.

What are the details on this malicious URL? What if it turns out it is nothing more than an HTML form asking for username and password. If the facilitator on the Mac then dutifully types the information in, is that a hack? I don't think so.

This whole contest is little more than a publicity stunt.

[Cacique]

btt