如何評價360Vulcan Team11秒攻破谷歌Chrome瀏覽器？

01-26

為什麼我看到的新聞不是很一樣呢？360這個團隊就是是文中所說的partial success的案例么？

Pwn2Own 2016: Windows Most Hacked, Edge Holds Its Own, Firefox Missing In Action

At this year』s Pwn2Own hacking contest, no target escaped unscathed. The hacking teams found 21 vulnerabilities in Windows, Mac OS X, Flash, Safari, Edge and Chrome, for which they were awarded a total of $460,000.

The two main sponsors of the event were Hewlett Packard Enterprise and Trend Micro. HPE will be selling the TippingPoint security division to Trend Micro for $300 million, which is why Trend Micro will remain the main sponsor in the future, but this year the two companies collaborated.

Windows Still Easiest to Hack

Although it』s not fair to compare an operating system to a browser in terms of how many vulnerabilities each has, because an operating system has a much larger attack surface, those vulnerabilities can be used to attack the browsers. This is why the Pwn2Own browser hacking contest allows operating system attacks, as well.

The hackers found six vulnerabilities in Windows 10 - the most found for a single target at the competition. However, Apple』s Mac OS X wasn』t too far behind, as they found five vulnerabilities in it.

Edge, Safari Successfully Attacked

Safari was attacked three times, and all were successful. Microsoft』s new Edge browser proved more difficult to attack compared to Microsoft』s previous browsers, but it was still successfully attacked on both attempts.

With Edge, Microsoft ditched most of the legacy code found in Internet Explorer, so it should be expected that it』s more secure. However, it also looks like the hackers may have not focused as much on it, possibly because they believed that it would be hard to break. We』re going to have to see if Edge can be consistently more secure than most other browsers at the next Pwn2Own competitions.

Chrome Still Security King

Chrome was built with security in mind from day one, and over the years it has proven to be the overall most secure browser. The sandboxing system, which has often been criticized for using too much memory, the large development team, and most of the browser being open source have all played a role in strengthening Chrome』s security.

The hackers attacked Chrome twice. One attack failed, and the other was deemed a partial success. The vulnerability had already been independently disclosed to Google, and the point of Pwn2Own is for software vendors to discover zero-day vulnerabilities.

顯然他們手上有0day，比賽的時候看誰的0day效果快而已

我記得外媒的報道是11分鐘。。。

台上10秒鐘，台下10年功

然而他家瀏覽器用的內核就是IE跟chromemu的

11秒是軟體運行時間，不是破解時間，底下肯定經過了無數次嘗試才取得如此的成績。

因為是11秒，所以肯定是巧妙的破解，顯著的漏洞。才在這麼短的運行時間內可以達到破解的目的。

感覺樓主也沒問為什麼360這麼快就攻破了啊，稍微懂一點的都知道是下去研究之後比賽直接用工具跑的吧，下面一片解釋，沒必要呀，可以關注一下chrome相比其他題目是不是最難的呀

有本事用個新電腦，開個機，沒時間了

雷書記都沒交代呢，你一個美國公司的伺服器先交代了。

在準備充足情況下，還讓計算機運算了幾億次，這不叫快，叫慢。要是小偷們也計算幾億次，那麼國破家亡了呀。

一群不懂IT的人跑進來把360批判一番想搞個大新聞

我來幫你們吧：

11秒有什麼意義嗎？

真正有技術的都沒參加。

360有才無德。

(待補充…)

我首先知道這件事情是從tk的微博上看到的。

記得是騰訊的小組發了個公告，也是類似多少秒攻破，拿了多少分這種喜聞樂見的公關稿。然後tk轉發了，同時表示，這部分騰訊某個組拿分最多最牛逼，這部分最難騰訊都攻破了最牛逼。總之就是騰訊的小隊全面碾壓360和國內其他公司的隊伍牛炸天啦。（現在已經刪掉啦~）

所以給我感覺，這個圈子的整體氛圍就是這樣的。不管是哪家公司，我攻破了我就是牛逼。我工具執行速度快，手裡的洞多，利用得好，我就是牛逼。

事實上也應該是如此，如果付出的努力得不到宣傳和肯定，那做這件事情又是為了什麼？

有些人總是很酸，左一個洞是買的，右一個只是現成工具的執行時間。

黑客可以用如此快的速度攻破 Chrome，是因為在賽前他們做了充分的研究。在比賽現場，只要把預演的攻擊流程重新呈現出來就可以了。360Vulcan 的老大鄭文彬向雷鋒網介紹：

使用單一的漏洞很難攻破 Chrome，這次攻擊實際上使用了四個漏洞的組合攻擊。

怕是有些人即使拿到了這四個洞也不知道怎麼利用吧。

還是那句話，台上一分鐘台下十年功，360養的一群大牛在日積月累的研究下找到漏洞，用了11秒重演了一遍。

首先：這群人是牛人沒人懷疑吧，

其次：這場比賽也沒幾個人參加，是小眾賽，注重結果，看到底做了什麼事情，不要去看名次，沒意義。

第三：這是有錢人之間的競爭，和一般人沒多大關係，養個高級或資深專家一年六十萬++++++，還沒含股票啊啥的。一般的小公司養得起嗎

第四，宣傳嘛，多少有水分啦，畢竟花了那麼多錢。

就這個事件而言，我覺得挺好，包括騰訊拿了總冠軍，這都是國內信息安全技術在進步的說明。無論360的公關如何宣傳，騰訊的公關如何運作，吐槽一下都無可厚非，但看到那麼多人在黑360和騰訊參賽隊伍的技術，也真是有點想不通，有時間在這裡長篇大論的發表專業演講，怎麼不報名去參賽？BB無用，你行你上唄