Google Chrome Hacked by VUPEN Security – Sandbox Cracked

By Updated on

Back in March 2011 the annual Pwn2Own contest took place, once again hackers failed to breach Google Chrome, however now VUPEN Security are claiming that they have finally managed to hack Chrome and even crack its sandbox.

Below we have embedded a video showing Chrome 11.0.696.55 running on Windows 7 SP1, in the video you see the computer go to a certain URL, in the background it apparently downloads the Calculator app from a remote location and then it launches outside of the sandbox. This calculator app is shown for demo purposes only, it could be replaced by spyware etc.

Also See: Google supports Chrome for Windows XP until 2015

At the beginning of the video you see Process Explorer explorer showing no sign of any dodgy-looking programs running in the background, therefore it looks it looks legitimate to us, we very much doubt that this is a hoax as VUPEN has previously hacked other browser versions during previous Pwn2Own contests.

Google has not confirmed whether the hack is legitimate or not and VUPEN will not reveal how the exploit works to the public, however the information will be shared with their Government customers.

This news comes as people are becoming more conscious of hacking and the problems and security risks associated with it (thanks to the PSN outage), we recently heard how Google Chrome could be coming to the PS3, maybe this isn’t such a good idea after all.