2 Photos and videos
Germany will host the European Cybersecurity Challenge (ECSC) 2026 in Bochum. NFITS e.V. will be the main organizer.
~500 participants are expected in October, with finalists competing in up to 45 national teams.
๐ecsc2026.de/news/ecsc-2026-bโฆ
8
22
656
Drones are hot - their security is not.
Here is how removed the NAND, dumped firmware, and reverse-engineered ECC on a consumer drone. Stay tuned for part 2!
neodyme.io/de/blog/drone_hacโฆ
2
14
20
1,394
Another amazing #Pwn2Own in the books! ๐ช
Our team pulled off some great hacks:
๐จ๏ธ HP Printer โ $20K / 2 MoP
๐ Home Assistant โ $15K / 3 MoP
๐ Smart Plug โ $20K / 2 MoP
๐ธ Canon โ $10K / 2 MoP
Total: $65K / 9 MoP
So proud of what we achieved together! ๐ง โก
3
3
24
2,027
D_K retweeted
22 Oct 2025
Success! We had a little configuration confusion, but Team Neodyme (@Neodyme) hopped for joy as their exploit of the Amazon Smart Plug was successful. Their attack went over Bluetooth & WiFI, so they used the RF enclosure. They head off to the disclosure room with details. #Pwn2Own
4
13
4,854
The Cyber Security Challenge Germany 2025 has started! ๐
The competition runs from March 1 - 18:00 CET to May 1 - 18:00 CEST.
We're excited to announce that we are inviting the top 6 DACH players in the EARTH category to the @DHM_ctf!
Participate now at: play.cscg.live/
5
13
4,970
Following our #38c3 talk about exploiting security software for privilege escalation, we're excited to kick off a new blog series! ๐
Check out our first blog post on our journey to ๐ฅ exploit five reputable security products to gain privileges via COM hijacking: neodyme.io/blog/com_hijackinโฆ
1
22
71
15,692
After some reversing and looking arround, I noticed the U-Boot version was 2017.11 . A quick search revealed CVE-2020-10648. A verified boot bypass for U-Boot. What was left was crafting a new fit image and using a custom initrd with the init command replaced, by a shell.
1
1
1,045
D_K retweeted
23 Oct 2024
Our final SOHO Smashup of Day 2 ends with a partial collision. Neodyme (@Neodyme) used 4 bugs, including a stack-based buffer overflow, in their successful demonstration, but 1 bug had previously been used in the contest. They earn $21,875 and 8.75 Master of Pwn points. #Pwn2Own
5
27
13,567
gg, this should fit nicely into our new office ๐จ๏ธ
We'll be looking to complete the set tomorrow by attacking Lexmark CX331adwe at 3pm in the printers category and QNAP QHora-322 and Canon imageCLASS MF656Cdw at 5pm in the SOHO category. See you there!
22 Oct 2024
Confirmed! Team Neodyme (@Neodyme) used a stack-based buffer overflow to exploit the HP Color LaserJet Pro MFP 3301fdw printer. The earn $20,000 and 2 Master of Pwn points. #Pwn2Own #P2OIreland
3
5
24
2,289
D_K retweeted
22 Oct 2024
Confirmed! Team Neodyme (@Neodyme) used a stack-based buffer overflow to exploit the HP Color LaserJet Pro MFP 3301fdw printer. The earn $20,000 and 2 Master of Pwn points. #Pwn2Own #P2OIreland
7
61
11,148
