We are still making PacSec announcements. But first some regrets. Other than BlackBerry, which I think says something about their security team and the culture inspired there by excellent managers. (waves) no-one has stepped up to bat for Pwn2Own Mobile. But if you remember I started this whole thing on a challenge from some macbooks, pwn them get to keep them.
Well I'm going to do the same thing. So here is a bet/challenge 2-3 weeks out from the conference. I'm going to have a WinMo phone(TBD, but something widely avail), a Project Fi edition Nexus 6, (or a 6P if it arrives in time, supposed to arrive the day I leave), an iPhone6s plus, a Blackberry Classic. You pwn any of my phones on this list and you get to keep them - and the spotlight time. So are you going to walk away from a million bucks for your remote iOS jailbreak to weaponize for who knows who for any nefarious what, or will you get a phone, moral highground, and handing it over to the original vendor/developer in the process? (and probably a few tequila shots)
Oh wait, maybe we can add one more carrot - and this clever idea is Gohsuke Takama's to give due credit. In addition to handing it over to the requisite vendor. (And as mentioned Blackberry has a bounty on any vulns for their platform....) and here is where the experiment begins, because we will auction off access to the information co-incident with the vendor disclosure, at the conference, and the proceeds go to the winning team(s). Gentlemen, start your disassemblers. Contact me if you are going to participate.