Windows 10 hacked at Tianfu Cup, China’s largest hacking competition

Gandalf_The_Grey

Level 42
Verified
Trusted
Content Creator
Apr 24, 2016
3,085
Tianfu Cup is China’s largest and most prestigious hacking competition. This year’s Tianfu Cup competition was held over the last weekend. Security researchers won nearly $1.2 million by successfully hacking several popular software products including Microsoft’s Windows 10, Apple iOS, Chrome web browser, Adobe PDF Reader and Ubuntu.

Security researcher @programmeboy from 360 ESG Vulnerability Research Institute successfully hacked Windows 10 v2004 (April 2020 edition) with a kernel bug.

In the coming days, Microsoft will release a Windows 10 update to fix this new vulnerability.
 

Gandalf_The_Grey

Level 42
Verified
Trusted
Content Creator
Apr 24, 2016
3,085
They hacked Windows 2004 aka 20H1. Does it mean that 20H2 is safe from this kernel bug? Maybe not. But I guess we'll see when the patch note comes out.
Good point. We can't be sure, but because 20H2 is "just" an enablement package, no big update, I think it will have the same kernel bug. We will have to wait till the patch comes out.
 

Spawn

Administrator
Verified
Staff member
Jan 8, 2011
20,667
Guaranteed there are some idiots who will come along fear-mongering, by using this as an example of why people should not use Windows 10, calling it insecure.

Problem with Microsoft is that they have 3, possibly 4 update types: Quality (security), Feature, Optional and Experience Packs. You can see how this can be an issue, when users are told to update. Not all updates are 1) required, 2) compatible, 3) stable.
 

Gandalf_The_Grey

Level 42
Verified
Trusted
Content Creator
Apr 24, 2016
3,085
It's a bit difficult to follow at Twitter:
These were the targets:
Ej9mWVyU8AM4U1W.png
This are the results:
EmSPjKHVoAAfX6m.jpeg
There will be more updates than just for Windows 10...
 
Last edited:
Top