Ethical Hacking News
The Pwn2Own Berlin 2026 hacking contest has concluded, with security researchers collecting $1,298,250 in rewards after exploiting 47 zero-day flaws. DEVCORE took home the top prize, earning a total of $505,000 for their efforts. The competition highlights the importance of vendors to prioritize patching and updating their products, as well as the need for users to stay vigilant and take proactive steps to protect themselves from potential threats.
The Pwn2Own Berlin 2026 hacking contest has concluded, with DEVCORE winning $505,000 in rewards.The contest tested 47 zero-day flaws across various enterprise technologies and AI categories.The competition highlighted the importance of robust cybersecurity defenses and vendor patching.DEVCORE exploited multiple zero-day vulnerabilities to win the contest, including Microsoft Exchange and Windows 11.The contest earned hackers a total of $1,298,250 in rewards.
The Pwn2Own Berlin 2026 hacking contest has concluded, marking a significant milestone in the world of cybersecurity. The competition, which took place at the OffensiveCon conference from May 14 to May 16, saw security researchers compete to exploit 47 zero-day flaws across various enterprise technologies and artificial intelligence categories. The contest was won by DEVCORE, who collected $505,000 in rewards for their efforts.
The Pwn2Own Berlin 2026 contest was a comprehensive test of the security measures in place at companies worldwide. It highlighted the importance of robust cybersecurity defenses and the need for vendors to prioritize patching and updating their products. The competition also demonstrated the creativity and determination of hackers who are constantly pushing the boundaries of what is possible.
Throughout the three-day contest, competitors targeted fully patched products across web browsers, enterprise applications, local privilege escalation, servers, local inference, cloud-native/container environments, virtualization, and LLM categories. They were rewarded with a total of $1,298,250 for their exploits.
DEVCORE was awarded this year's edition of Pwn2Own Berlin with 50.5 Master of Pwn points and $505,000 in rewards throughout the three-day contest after hacking Microsoft SharePoint, Microsoft Exchange, Microsoft Edge, and Windows 11. Following closely behind were STARLabs SG and Out Of Bounds, who collected $242,500 and $95,750 respectively.
One of the most notable exploits was carried out by Cheng-Da Tsai (also known as Orange Tsai) of the DEVCORE Research Team. Tsai earned a total of $200,000 after chaining three bugs to gain remote code execution with SYSTEM privileges on Microsoft Exchange. This achievement demonstrated the potential for hackers to exploit vulnerabilities in enterprise systems.
The contest also saw several notable mentions, including Valentina Palmiotti (chompie) of IBM X-Force Offensive Research, who collected $70,000 for rooting Red Hat Linux for Workstations and an NVIDIA Container Toolkit zero-day. On the second day of the competition, hackers demonstrated another Windows 11 local privilege escalation vulnerability, a root-privilege escalation vulnerability in Red Hat Enterprise Linux for Workstations, and zero-days in multiple AI coding agents.
The Pwn2Own Berlin 2026 contest serves as a reminder that cybersecurity is an ongoing battle. It highlights the importance of vendors to prioritize patching and updating their products, as well as the need for users to stay vigilant and take proactive steps to protect themselves from potential threats.
In conclusion, the Pwn2Own Berlin 2026 hacking contest was a significant event in the world of cybersecurity. The competition demonstrated the creativity and determination of hackers and highlighted the importance of robust cybersecurity defenses.
Related Information:
https://www.ethicalhackingnews.com/articles/Pwn2Own-Berlin-2026-Hackers-Collect-1298250-for-Exploiting-47-Zero-Day-Flaws-ehn.shtml
https://www.bleepingcomputer.com/news/security/hackers-earn-1-298-250-for-47-zero-days-at-pwn2own-berlin-2026/
https://www.zerodayinitiative.com/blog/2026/3/11/announcing-pwn2own-berlin-for-2026
https://cyberpress.org/microsoft-edge-litellm-hack-pwn2own/
Published: Mon May 18 01:37:00 2026 by llama3.2 3B Q4_K_M
