Hackers group hacked Tesla Model 3 in Pwn2Own contest, they successfully exploited a vulnerability in the electric vehicle infotainment system.
Pwn2Own is running by Trend Micros Zero Day Initiative and it awarded more than $4 million prices over their lifetime program.
Richard Zhu and Amat Cam, known as Fluoroacetate as they exploit in the Tesla by JIT Bug and successfully shown their research one Model 3 internet browser.
That’s a wrap! Congrats to @fluoroacetate on winning Master of Pwn. There total was $375,000 (plus a vehicle) for the week. Superb work from this great duo. pic.twitter.com/Q7Fd7vuEoJ
— Zero Day Initiative (@thezdi) March 22, 2019
Tesla Vice President of Vehicle Software, David Lau said,
“We develop our cars with the highest standards of safety in every respect, and our work with the security research community is invaluable to us.
Since launching our bug bounty program in 2014 – the first to include a connected consumer vehicle– we have continuously increased our investments into partnerships with security researchers to ensure that all Tesla owners constantly benefit from the brightest minds in the community.
We look forward to learning about, and rewarding, great work in Pwn2Own so that we can continue to improve our products and our approach to designing inherently secure systems.”
Pwn2Own total awarded for $545,000 including Bugs in Apple, Safari, Microsoft Edge and Windows, VMware Workstation, Firefox and Tesla.
Tesla launched the Bug Bounty Program since 2014, last year company increased the reward payment from $10,000 to $15000.