Several good articles at InfoWorld about CanSecWest security conference’s PWN 2 OWN hacking contest back in March.
A few snippets that I especially enjoyed:
Miller said that he chose to hack the Mac because he thought it would be easiest target. Vista hacker Macaulay didn’t dispute that assertion: “I think it might be,” he said.
“The flaw is in something else, but the inherent nature of Java allowed us to get around the protections that Microsoft had in place,” he said in an interview shortly after he claimed his prize Friday. “This could affect Linux or Mac OS X.”
(The attacker got into the Windows Vista system only when they were allowed to install non-default software, e.g., Java. Note to self: no JRE!)
Read the full article.