![]() Exploit types: information disclosure, IP address leak, or remote code execution. If you are in the market for a VPN product look no further than ExpressVPN, NordVPN or Surfshark. Even though I use one of these products, the reason for mentioning them is that Zerodium is offering Windows security researchers up to 2.5m for zero-day vulnerabilities that relate to IP address leak and remote code execution.ĮxpressVPN offers up to $2,500 per vulnerability with bonuses of up to $10,000, while NordVPN offers $5,000 or more for critical security flaws. Zerodium is likely prepared to pay out much more for zero-day exploits.ĮxpressVPN, NordVPN and Surfshark are mostly used by consumers and there aren’t any reports of vulnerabilities in these applications being exploited in attacks. Zero-day exploit broker Zerodium announced it is looking for zero-day vulnerabilities in the Windows clients of ExpressVPN, NordVPN, and Surfshark. On the other hand, there are many reports of enterprise VPN solutions being targeted by threat actors, particularly products made by Fortinet, Pulse Secure, Citrix, VMware, and Zimbra. ![]() DC-based exploit broker Zerodium is now seeking to buy 0-days in ExpressVPN, NordVPN, and Surfsharks PC apps, namely those disclosing user info or allowing. Zerodium is looking to pay for zero-day exploits for vulnerabilities in the Windows clients of three virtual private network (VPN) service providers, ExpressVPN, NordVPN, and Surfshark. The NSA issued an alert earlier this year, warning organizations that vulnerabilities in these products had been exploited by Russian cyberspies. Zerodium is temporarily offering higher payouts for Chrome, VMware vCenter Server, and WordPress exploits. Zerodium is looking to acquire exploits for NordVPN, ExpressVPN, and Surfshark, signaling that its government clients may want to spy on some VPN users. The company is offering up to $1 million for Chrome, $150,000 for vCenter Server, and $300,000 for Wordpress exploits.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |