Image 1 of 2
Andrew Wbeelsoi (right) and Mischa Spiegelmock speak at the ToorCon hacker conference in San Diego on Saturday. The two gave a presentation that was a mix of dark hacker comedy and more serious talk, including the disclosure of a possible vulnerability and zero-day exploit in the open-source Firefox Web browser. The flaw affects Firefox on Windows, Apple Computer’s Mac OS X and Linux, they said.
Jesse Ruderman (left), a Mozilla security staffer, was called to the stage with the two hackers, Wbeelsoi and Spiegelmock. He attempted to persuade the presenters to responsibly disclose flaws via Mozilla’s bug bounty program, instead of releasing them publicly or using them for malicious purposes–such as creating networks of hijacked PCs, called botnets, which is what the two claimed they did. rn
rnAfter the presentation, Ruderman joined the hackers in the halls of the convention center in an attempt to learn more about the apparent vulnerability they had just disclosed and their motivations.