The Pwnie Awards 2011: Reliving The Fail Moments of The Year

If you are a network security enthusiast, The Black Hat   ® Technical Security  Conference is an event you should follow religiously. This year’s Black Hat Conference at Las Vegas had some awesome events out of which, the Pwnie Awards was the moment of crowning.

The Black Hat remains the biggest and the most important technical security conference in the world by remaining true to our core value: serving the information security community by delivering timely and actionable security information in a friendly, vendor-neutral environment.

epic-failEvery year at the Black Hat Conference, the Pwnie award celebrates the achievements and failures of the security community. This year too, they were back to present the awards and the one company that was  disgraced badly was poor Sony.

To sum up the awards, the ASP.NET Framework received the Best Server-Sided Bugaward for allowing remote code execution and the FreeType library used in MobileSafari received the Best Client-Sided Vulnerabilityaward. While the Windows Kernel received the award for the Best Privilege Escalation Bug, the Lamest Vendor Response Awardwent to RSA for their handling of the SecurID compromise.

However, I was in for a surprise when I went over to the Most Epic Failsection and there was not one but five epic fails from the winner Sony- the PS3 jailbreak, Sony Online Entertainment account theft, the rise of LulzSec (it grew on Sony’s fails), PSN shutdown and Sony eventually firing its security team over the fiasco.

The Epic 0wnageaward went to Stuxnet but no one received the award personally for obvious reasons.

Sony is already a hot favorite with hackers and they have constantly ridiculed it to their heart’s content, but is Sony even listening to these voices? Does it make a difference even if they win the Pwnie Epic Fail? All they can say for the time being is Buy our award winning products!

(Image Credit)

Published by

Chinmoy Kanjilal

Chinmoy Kanjilal is a FOSS enthusiast and evangelist. He is passionate about Android. Security exploits turn him on and he loves to tinker with computer networks. You can connect with him on Twitter @ckandroid.