At last year’s Pwn2Own competition at CanSecWest, Chrome stood as one platform that did not get hacked. That may change this year with another year of researchers being able to spend time with it, but Google wants to give out a little motivation to make sure that Chrome is secure.
The company will be awarding $20,000 to anyone who is able to hack the browser on the Cr-48. This would require finding a hole that allows escalation privileges from inside the sandbox. It can be combined with some other type of vulnerability involved, but there must be a break in the sandbox to get the award.
Prizes are given out for hacking other browsers, which include the top four: IE, Firefox, Chrome and Safari. Last year three of the four were hacked as well as the iPhone.
The awards are as follows: $15,000 for a hack of any of the above browsers. Google will offer the $20,000 on day 1 of the contest for a hack using Google code, the organizers will pony up $10,000 on day 2 for non-Google code and Google will offer $10,000 for the bug.
Pwn2Own 2011 is being held March 9-11 in Vancouver, BC. Read more details here on ZDI’s blog.