Windows 11 Hacked — Three New Pwn2Own Zero-Days Deployed
Windows 11 hacked three times on day one of PWN2OWN.
Update, May 17, 2025: This story, originally published May 16, has been updated with news of another successful Windows 11 hack at the Pwn2Own hacking event in Berlin.
I've said it before, and I'll say it again: hacking is not a crime. I'd have been in prison a long time ago were that true. I'm not a fan of the term ethical hackers, but it will have to do to describe the security researchers and hacking elite who have gathered in Berlin for day one of the Pwn2Own hackathon. Rather than use their undoubted hacking skills for malicious purposes, like the most prolific cybercriminal groups do, these hackers have been deploying zero-days for the good of us all, including three aimed at Windows 11 that managed to elevate privileges to system level that could enable complete system takeover. Such skills do not go unvalued, and the hackers concerned were rewarded $75,000 for their efforts. Here's what you need to know about the Windows 11 hack trilogy.
If you are a regular reader of my articles, then you will know that I have covered the Pwn2Own events for many years. Most recently, detailing how Tesla fell to hackers four times in one day, and five zero-day vulnerabilities were employed to compromise the Samsung Galaxy 24 smartphone. You would also know that Tesla and Samsung submitted their products to the hackathon event, wanting to see if the elite of the hacking world could find vulnerabilities that they had not, so they could be fixed before malicious actors stumbled across them.
Pwn2Own, the brainchild of the Trend Micro Zero Day Initiative, dates back to 2007 and attracts some of the best hacking minds on the planet to the twice-yearly events. Pitched against the clock to 'pwn' products, hacker and gamer slang for owning something or someone by gaining control, the zero-day hacker heroes can earn a share of more than a million dollars in prize funds.
Day one of Pwn2Own Berlin 2025, held on May 15, saw no less than three successful hacking attempts targeting Windows 11 and escalating privileges to system level:
Update: The first results for day three of Pwn2Own are in, and it's Windows 11 that's the victim once again. A hacker called Angelboy from the DEVCORE Research Team achieved another privilege escalation attack against Microsoft's premier operating system. However, this was not deemed a full success in terms of the competition, but rather a collision. This is because one of the vulnerabilities that were used in the exploit chain was already known to Microsoft, and so not a true zero-day.
And it's not just Microsoft products that are falling into the hands of these elite hackers. Broadcom's VMware ESXi has been compromised by a zero-day exploit as well. This is Pwn2Own history in the making, as the hypervisor has never been compromised by hackers before during the event's 18 years of activity. The hacker behind the achievement, Nguyen Hoang Thach, who is part of the STARLabs SG team, was able to deploy a single integer overflow exploit. This earned them a not-too-shabby reward of $150,000 on the spot, as well as 15 valuable points towards the coveted Master of PWN title.
I have reached out to Microsoft for a statement regarding the Windows 11 hack successes at Pwn2Own, as well as Broadcom, concerning the $150,000 VMware ESXi zero-day.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
CNET
6 hours ago
- CNET
Refurbished Tech Is Always an Option for You, and It Could Be a 'Joyful' One, Too
I've been writing about the right-to-repair movement and finding more sustainable ways to buy tech for years, but it wasn't until earlier this year on a routine Tube journey across London that I heard of Back Market, a refurbished tech marketplace originating in France. While avoiding any possible eye contact with strangers, as is good Tube etiquette, my gaze drifted up to a Back Market advert above the window pane. "Sorry, cats. Tech now has multiple lives too," it said. It was amusing and immediately made me want to know more. It turned out that I was late to the party, and this was just one of many cheeky ads that Back Market has run on the London Underground network and beyond. The aim of the company's campaigns is to normalize buying refurbished tech by making it fun, Back Market's CEO Thibaud Hug de Larauze said at SXSW London on Tuesday. Back Market projects a slogan onto the Apple Store in London. Back Market "Don't make people feel guilty, like you're a bad person because you're buying new," he said. "It's not going to work. It's not going to change people's behavior." Extending the lifespan of our phones, laptops and other tech products, whether through repair, responsible trade-ins that prioritize recycling or buying refurbished devices is critical to ensure we're not wasting precious minerals and exerting pressure on the natural world in ways that contribute to the climate crisis. It's serious stuff, but Back Market's lighthearted approach is about sparking "a joyful revolution" in the world of refurbished tech, said Hug de Larauze. Buying into this revolution is good for the planet, and for protecting the wellbeing of the people in developing countries whose health is impacted by mining for minerals or recovering them from discarded e-waste. It's also good for another reason – avoiding price rises on new tech sparked by tariffs. The repair and refurbish movement Back Market isn't the only marketplace willing to pay for your old tech and to sell you a refurbished device, but it's one part of a more widespread movement for change. Earlier this year, the company partnered with iFixit, which is equipping people around the world with the tools they need to repair their own tech while advocating for right-to-repair legislation. "We want to enable people to repair by default, if they want and if they can," said Hug de Larauze. "If they cannot, let's trade in easily and adopt a refurbished one." Together the companies are encouraging people to increase the time they hold onto their phones to five years, rather than the current average of two and a half years. They're also applying pressure to phone manufacturers to increase software support to 10 years. But Hug de Larauze has an even bigger request for tech companies, which he describes as "the next fight we need to push for." At the point when tech manufacturers cease to provide ongoing support for devices, he wants them to unleash the hardware they've made so that it can be fully divorced from the operating system. The idea is that an old iPhone, for example, could get a new lease on life as something like a baby monitor or security camera if combined with different software. This feels like a big ask for tech companies, with the main argument against the proposal likely to center around security concerns. Still, the world of refurbished tech is changing quickly. Over a million refurbished devices were purchased through Back Market last year alone and according to Hug de Larauze, there are already signs that people are holding onto their smartphones for longer and trading in more often. "For me, it's about building a global ecosystem of service for everybody to basically access to repair by default," he said. "Obviously, keep the device longer, but if for some reason you cannot, then easily trade it in and access refurbished devices instead."
Wall Street Journal
7 hours ago
- Wall Street Journal
Semiconductor Subsidies? Tried and Failed
I was the CEO of Cypress Semiconductor, a chip company founded in 1982 that peaked in 2018 at $2.8 billion in revenue and 5,846 employees. In 2020 German chip maker Infineon acquired us for $10 billion. In 1987, the Semiconductor Industry Association decided that our industry needed to get on what I call welfare. The association lobbied Washington to fund a consortium called Sematech, grant it exemptions from antitrust laws, and fund a silicon-wafer fabrication plant. This was needed, the association said, because Japanese companies were about to wipe out the American semiconductor industry. As a chip company CEO, I never worried about getting wiped out, but I worried daily about rival memory chips from Hitachi, Toshiba, Mitsubishi and Fujitsu. That healthy competition made our company stronger, and in 2015 Cypress acquired Fujitsu's microcontroller team.
Geek Tyrant
7 hours ago
- Geek Tyrant
New JAMES BOND Game From IO Interactive Officially Titled 007 FIRST LIGHT — GeekTyrant
IO Interactive has revealed the official title for its highly anticipated standalone original James Bond video game, 007 First Light . The announcement was accompanied by a teaser image, with the official reveal of the game set to take place this week. The game will feature "a wholly original Bond story," which is said to put players "into the shoes of the world's favorite Secret Agent to earn their 00 status in the very first James Bond origin story." IO Interactive CEO and co-owner Hakan Abrak previously discussed the game and he revealed that they won't be using the likeness of any actor who has portrayed 007 in the past. He goes on to confirm that the creative team will also be creating a completely new story for their original version of Bond. He explained: "It's important to mention: doing a licensed game is new to us. We've only done our own, original IPs (intellectual property), right? We've created these characters... ourselves, from scratch. 'So, I think for us to really embrace this fully, and really, as I said before, we don't like to work 'mechanical.' It's not just because it's a big IP, or it's a licensed game, and commercially this is interesting... It means nothing to us. We've taken a lot of non-commercial risks before. 'So, for us, it's about... we need to feel it, deep inside. The passion needs to be there, so it was very important for us that it wasn't a movie adaptation. So, it wasn't a game about... a specific movie, where the story has already been told." "It's very important that we could create a digital Bond. A Bond for the gaming industry... So it's a completely original story. This felt really, really important for us and we conveyed that to [James Bond owner] EON and they agreed that the result would probably be better doing it like that. "There's always excitement around a new Bond. It's amazing, what they have done with the franchise over the years. Every Bond kind of defines a generation and it's amazing how they kept reinventing themselves over so many years. So, we're not only inspired by one movie, or games and whatnot. 'We're inspired by the whole thing, and just sucking things into us to make an original Bond, an original story, but that is absolutely true and recognizable in the values there is in Bond. I'm really looking forward to creating a new community that the gamers can call their own." I'm looking forward to seeing what this game will entail, and we'll learn more soon!
