Telegram removed our channels from search but who cares? Just use the following links to subscribe there:.

101 Chrome Exploitation — Part 0: Preface . We are starting a new series on modern browsers' architecture and their exploitation using Chrome as an example. Readers will learn how browser subsystems are implemented, how their security is ensured and how it is violated with.

RT @sephr: Apparently it's illegal to talk about Russian exploit brokers in Europe. This censorship seems counterproductive to online safet….

We are looking for: . — Telegram 1-click RCE — Up to $500,000 .— Telegram 0-click RCE — Up to $1,500,000 .— Telegram full chain — Up to $4,000,000. In the scope are exploits for Android, iOS, Windows. The prices are depending on limitations of zero-days and obtained privileges.

Looking for:. — Safari SBX for iOS — Up to $350,000.— Chrome RCE for Android — Up to $350,000.— Chrome RCE+SBX for Windows — Up to $700,000. Submit your zero-days:

Vacancy: External Browser Security Researcher. OPERATION ZERO is currently looking for a professional exploit developer to join the Browser research team as an external employee. Responsibilities:.• Carry out tasks assigned to the team, including the research of one of modern.

Vacancy: External Android Security Researcher. OPERATION ZERO is currently looking for a professional exploit developer to join the Android research team as an external employee. Responsibilities:.• Carry out tasks assigned to the team, including the research of the Android.

Condition: we must be sure that your zero-day really exists and works. OPERATION ZERO can help a researcher with devices without any terms if he has already sold his exploits on the platform.

The price of the devices doesn’t matter, it can be both cheap smartphones and macbooks with top-end configurations.

When a developer got an exploit but has no devices of the latest versions for testing, we purchase them at our expense and give to the researcher for free. More precisely, we simply transfer money to you with which you buy devices, for example, phones, laptops, routers, etc.

In search of:. — Mikrotik router RCE — Up to $150,000. Zero-day exploits should be applicable to Ethernet or Wireless routers. More broad range of devices such as switches would be a plus which may increase the total payout. Submit details via the form:

Also, we look for:. — macOS kernel LPE — Up to $300,000.— macOS non-kernel LPE — Up to $100,000. Zero-day exploits should work on macOS 13/14 running on Apple silicon M1 and M2 chips. Submit details via the form:

In search of:. — Chrome RCE w/o SBX — Up to $500,000. The zero-day exploit should work on latest Android and tailored at least to Samsung S23/24. Submit details via the form:

We would also like to see your submissions on these targets:. — SonicWall NGFW RCE — Up to $200,000.— FortiGate NGFW RCE — Up to $200,000.— MS Word RCE — Up to $150,000. The prices depend on limitations of exploits. Submit details via the form:

By increasing the premium and providing competitive plans and bonuses for contract works, we encourage the developer teams to work with our platform. Reach us via e-mail to figure out how to maximize the net profit of your team.

Due to high demand on the market, we're increasing payouts for top-tier mobile exploits. In the scope:. — iOS RCE/LPE/SBX/full chain — From $200,000 up to $20,000,000 (twenty millions). — Android RCE/LPE/SBX/full chain — The same. As always, the end user is a non-NATO country.

We’ve created two channels on Telegram. Follow us for press releases, zero-day price updates, vacancies, and more:. English version: Russian version:

Continuing the previous post, we're also looking for #0days:. — Server-side No Authentication RCE (SSL VPN appliances, CRMs, e-commerce, etc) / up to $100,000.— Microsoft Office RCE / depending on the quality of the exploit. Submit your zero-day:

We are urgently looking for the following #0day exploits:. — iOS 16/17 RCE Full Chain / $2,500,000 .— Android RCE Full Chain / $2,500,000.— E-mail client and server RCE (Microsoft Exchange, Outlook, Thunderbird, etc) / $150,000. Submit your zero-day:

Operation Zero is sponsoring Code IB conference that's held on April 27, 2023 in Saint Petersburg, Russia. Link: