All the latest UK technology news, reviews and analysis

MacBook Air hacked in two minutes

by Andrew Charlesworth

28 Mar 2008

Comments: 2

  • Tweet this
MacBook Air
Experts assume that the vulnerability must lay with Apple's Safari browser

A three-way hacking contest between Apple, Windows and Linux laptops has ended in the Mac caving in first - in just two minutes.

The contest was part of the CanSecWest security conference in Vancouver, and was won by Charlie Miller, one of the security researchers who cracked Apple's iPhone last year.

Further reading

Miller walked away with the $10,000 prize put up by the organisers, along with the MacBook Air he hacked.

No one was able to hack into any of the machines by attacking them over the network on the first day of the contest.

But Miller succeeded when the organisers allowed hackers to direct human operators of the three machines to visit websites and open emails.

Miller's exploit code was on a website and the Mac fell within two minutes. He was only able to use software preinstalled on the Mac, so experts assume that the vulnerability must lay with Apple's Safari browser.

However, Miller signed a non-disclosure agreement which means that the exploit will not be made public until Apple has been informed.

At the time of posting, the other two machines remain intact.

Do you agree?

Add your comment

and wasn't it a direct connection?!

This hack was done using a MacBook connected to the Air using a crossover cable and a directed user. c'mon, you mean to tell me that this is only way it could be hacked...sounds like a hack job of a security argument to me.

Posted by: keep phishin' 28 Mar 2008

Still couldn't do it without a directed exploit

With nothing but net access they still couldn't crack the Mac! It required directing the "automated user" to go to a compromised web site.

Posted by: Scott Beckstead 28 Mar 2008

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

A Microsoft logo

Microsoft posts critical Internet Explorer security patch with February fixes

Related white papers

Related articles

Related jobs

Today's top stories

Cern Control Centre building

CERN powers up Large Hadron Collider in final search for Higgs Boson

hp-z1-workstation-pc

HP takes wraps off all in one Z1 workstation

Asus Transformer Prime vs Apple iPad 2

Apple iPad 2 vs Asus Transformer Prime head-to-head review

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Network Support Engineer Up To £40k

(Roc Search - Network Support Engineer, 2nd line, 3rd...

3rd Line Engineer / Infrastructure Engineer - VMware, Server,

3rd Line Engineer / Infrastructure Engineer - Berkshire...

SQL Server DBA - Database Administrator - MySQL Suffolk - £50k

MySQL SQL SERVER DBA / Database Administrator - Online...

PMO Analyst - Banking

PMO Analyst - Banking Client A financial organisation...

To send to more than one email address, simply separate each address with a comma.