TBA

More talks to come. Reviewed by a peer-review board of practising researchers. Click any talk for details — share the link with a colleague.











What do you do when your exploit burns hours before you're on stage? When the target gets patched, your config was different, or you actually don't even have a bug yet - and the clock is already ticking?
For Team DDOS, the answer was simple: you find another way in.
This talk tells the story of three Pwn2Own entries across all three event flavors of the last year - all developed after the draw, all under impossible time constraints. A QNAP NAS rooted in 48 hours starting from zero bugs. An automotive charger fully compromised in 24 hours with no prior exploit - add-on prize included. A Firefox exploit rebuilt from scratch in 72 hours after a last-minute patch burned the original chain.
Three targets, three ticking clocks, three full exploit chains delivered under pressure that turns most entries into withdrawals. We'll walk through the discovery, analysis, and exploitation of each target - revealing the approach that makes post-draw exploitation repeatable, not lucky.
Because at Pwn2Own, the hardest target has always been time.

Evangelos is a vulnerability researcher and member of Team DDOS, competing across three Pwn2Own events in the span of a year - Ireland 2025, Automotive 2026, and Berlin 2026. With a background in defensive security spanning 7+ years and 3 years of active CVE hunting, his work focuses on finding and exploiting vulnerabilities in targets ranging from embedded to software. Team DDOS placed second overall at Pwn2Own Automotive 2026. His Pwn2Own strategy: register, panic, coffee, root.

Ben Koo is an independent security researcher with 3+ years of experience. His research is focused on finding and exploiting bugs in low level binaries. His disclosures include critical vulnerabilities in embedded devices and Linux kernel. He has competed in Pwn2Own 5 times, mostly as part of Team DDOS. Team DDOS is known for recently collecting 3 consecutive Pwn2Own t-shirts, pwning 10 targets in total, with a best finish of 2nd place.