TippingPoint Digital Vaccine Laboratories
DID YOU KNOW... TippingPoint customers were protected against 0-day exploitation of MS07-017 two years prior to the exploit being discovered in the wild.

Pwn2Own 2013

Overview HP’s DVLabs Zero Day Initiative (ZDI) is expanding the focus of its annual Pwn2Own competition beyond vulnerabilities in the web browser this year. Over the last several years, we have seen browser plug-in vulnerabilities become increasingly popular in exploit kits and malware. These vulnerabilities affect a large percentage of the Internet community and are quickly weaponized by attackers. That being said, we are not forg ...


2012: Year in Review

As we sit back and reflect on the year, we wanted to highlight some of the work going on in DVLabs and reveal some of the statistics from what has truly been an interesting year in the Zero Day Initiative program.


EUSecWest Mobile Pwn2Own 2012 Recap

Carnage. Pwnage everywhere. Empty streets, wailing widows, and the smoking remains of a hotel where the sign is barely visible, hanging from a shattered chain and swinging in the wind -- NH Amsterdam Centre Hotel. Something black catches my eye -- it's just a rag, caught on a broken base station arm. On closer inspection I can make out a few words: Zero Day Initiative... EUSecWest... Mobile Pwn2Own... and the famous trio of white X's signifying the Amsterdam coat of arms. What happened here?


Mobile Pwn2Own 2012

We are introducing a new spin on the Pwn2Own competition this year by holding the first Pwn2Own dedicated to the mobile attack surface. The primary goal is to demonstrate the current security posture of the most prevalent mobile technologies in use today; including attacks on mobile web browsers, mobile operating system, Near Field Communication (NFC), Short Message Service (SMS), and the cellular baseband. Along with our sponsors Research in Motion (RIM) and AT&T, HP DVLabs looks forward to highlighting the researchers working to help improve mobile security...


ZDI Update – June 2012

For those that were at REcon last week, you may have met some of our ZDI Security Researchers and no doubt heard them talk about the upcoming Mobile Pwn2Own event at EUSecWest.  We are working with Dragos on the details and you should expect to hear from us regarding the rules and logistics in the coming weeks.  If you’re interested in participating as a contestant drop us an email (zdi@hp.com).Back at the office, we are focused on business as usual - making offers, investiga ...