Development Micro’s Zero Day Initiative (ZDI) has introduced the targets and prizes for the upcoming Pwn2Own hacking occasion, set to happen in Cork, Eire, on October 21-24.
Meta is a sponsor of Pwn2Own Eire 2025 and as much as $1 million is being supplied for a WhatsApp exploit that allows distant code execution with no consumer interplay.
As well as, a one-click WhatsApp distant code execution exploit can earn contributors as much as $500,000, whereas a zero-click account takeover exploit might be price as much as $150,000.
Distant zero-click exploits that allow entry to the microphone or video feed, or entry to delicate consumer information are price as much as $130,000. An exploit that allows entry to consumer information is price the identical quantity even when it requires one click on.
Eventually 12 months’s Pwn2Own Eire hacking competitors, a zero-click WhatsApp exploit was price as much as $300,000, however nobody demonstrated such exploits. Meta and ZDI are considerably growing the reward this 12 months.
Pwn2Own contributors can this 12 months earn as much as $300,000 for distant exploits focusing on Pixel 9 and iPhone 16 smartphones. A distant Samsung Galaxy hack is price $50,000. USB has additionally been launched as an assault vector this 12 months.
Important prizes are additionally being supplied for exploits focusing on Meta wearables, together with Meta Ray-Ban good glasses and the Meta Quest VR headset. Prizes vary between $30,000 for jailbreaks and $150,000 for zero-click distant code execution.
Researchers can earn as much as $100,000 within the SOHO Smashup class, the place they should compromise a networking machine after which transfer laterally on the community to hack a sensible speaker, NAS machine, or digital camera.Commercial. Scroll to proceed studying.
Different classes embrace NAS, good house units (each classes with rewards of as much as $50,000), surveillance methods (as much as $30,000), and printers (as much as $20,000).
Greater than $1 million was paid out at Pwn2Own Eire 2024 for exploits focusing on smartphones, cameras, printers, NAS units and good audio system.
Associated: Hackers Earn $886,000 at Pwn2Own Automotive 2025 for Charger, OS, Infotainment Exploits
Associated: VMware Flaws That Earned Hackers $340,000 at Pwn2Own Patched
Associated: WhatsApp Vulnerability Might Facilitate Distant Code Execution
