A 10-year-old hacker who goes by the handle CyFi has revealed at DefCon 19 Hackers Convention a zero-day exploit in games on iOS and Android devices. Researchers have confirmed the exploits as a new class of vulnerabilities. The 10yr old girl from California found the holes around January 2011 because she "started to get bored" with the pace of farmville and similar games.

Sitting down for a chat with CNET  before her DefCon presentation, CyFi said, "It was hard to make progress in the game, because it took so long for things to grow. So I thought, 'Why don't I just change the time?'" Most of the games she discovered the exploit in have time-dependent factors. For example, planting corn might take 10 real-time hours to mature in the game. Manually advancing the phone clock forced the game further ahead than it really was, opening up the exploit.

CyFi has not yet revealed to the game makers her exploits.


Follow us on Facebook:

Author Profile

2 Responses to “10yr old hacker finds zero-day vulnerabilities in iOS games”
  1. everyone kons that since the game smurf was on ipod touch so no she didint find something new its at least 6 month old

  2. I don’t understand why this is called an exploit? This would be like calling a trial remover (deletes registry key) an exploit filled piece of software. Did she inject code somewhere to accomplish this or just turn the clock ahead? Just turning the clock forward isn’t an exploit and has been done with games since games could be shareware.

Dont be shy now, Comment this post!

© Copyright MAS Media Inc. | [ Admin Login ] | Sitemap | Privacy Statement
Follow us on Twitter!
Join us on Facebook!