Wiz Zeroday.Cloud bug-bounty competition
Commercial Activity
Summary
Hide ▲
Show ▼
Wiz launched Zeroday.Cloud, a $4.5 million bug-bounty competition focused on open-source cloud and AI tools. The program is backed by Google Cloud, AWS, and Microsoft and covers six categories spanning AI, Kubernetes and cloud-native systems, containers and virtualization, web servers, databases, and DevOps/automation. The competition is tied to Black Hat Europe in London on December 10-11, 2025. Researchers must submit entries by December 1, 2025, and the challenge is built around high-impact exploits such as 0-click remote code execution and full container/VM escape. Top payouts reach $300,000, with registration handled through HackerOne and additional participation rules including identity verification and country restrictions.
Related Happenings
Pwn2Own Berlin 2026 multi-product zero-days privilege-escalation flaw
Vulnerability
First: 14.05.2026 21:53
Last: 14.05.2026 21:53
Sources 1
About this happening:
**Pwn2Own Berlin 2026** opened with **24 unique zero-days** demonstrated against **fully patched products**, creating immediate exposure across browser, OS, virtualization, enterp...
Pwn2Own Berlin 2026 multi-product zero-days privilege-escalation flaw
VulnerabilityAbout this happening: **Pwn2Own Berlin 2026** opened with **24 unique zero-days** demonstrated against **fully patched products**, creating immediate exposure across browser, OS, virtualization, enterp...
PCPJack Linux cloud credential-theft and persistence framework
Malware Activity
First: 07.05.2026 21:35
Last: 07.05.2026 21:35
Sources 1
About this happening:
The **PCPJack** malware framework is stealing credentials from **exposed Linux cloud systems**, creating a broad risk of account takeover and lateral movement. It targets services...
PCPJack Linux cloud credential-theft and persistence framework
Malware ActivityAbout this happening: The **PCPJack** malware framework is stealing credentials from **exposed Linux cloud systems**, creating a broad risk of account takeover and lateral movement. It targets services...
Zealot autonomous AI cloud intrusion proof of concept
Technical Analysis
First: 23.04.2026 13:09
Last: 23.04.2026 13:09
Sources 1
About this happening:
**Palo Alto Networks Unit 42** built **Zealot**, an autonomous AI agent that successfully attacked an isolated **Google Cloud Platform** environment, showing that machine-speed ad...
Zealot autonomous AI cloud intrusion proof of concept
Technical AnalysisAbout this happening: **Palo Alto Networks Unit 42** built **Zealot**, an autonomous AI agent that successfully attacked an isolated **Google Cloud Platform** environment, showing that machine-speed ad...
Microsoft Zero Day Quest $2.3M bounty payout
Commercial Activity
First: 15.04.2026 19:20
Last: 15.04.2026 19:20
Sources 1
About this happening:
Microsoft **awarded $2.3 million** to researchers through **Zero Day Quest**, turning the contest into a major payout event for **cloud and AI security** testing. The live event a...
Microsoft Zero Day Quest $2.3M bounty payout
Commercial ActivityAbout this happening: Microsoft **awarded $2.3 million** to researchers through **Zero Day Quest**, turning the contest into a major payout event for **cloud and AI security** testing. The live event a...
RSAC Innovation Sandbox 2026 finalists and $5M SAFE funding
Commercial Activity
First: 22.03.2026 13:40
Last: 22.03.2026 13:40
Sources 1
About this happening:
The **RSAC Innovation Sandbox** named **10 AI-focused cybersecurity finalists** and paired each one with a **$5 million uncapped SAFE**, adding direct capital to emerging security...
RSAC Innovation Sandbox 2026 finalists and $5M SAFE funding
Commercial ActivityAbout this happening: The **RSAC Innovation Sandbox** named **10 AI-focused cybersecurity finalists** and paired each one with a **$5 million uncapped SAFE**, adding direct capital to emerging security...
Timeline
-
06.10.2025 20:12 2 articles · 7mo ago
Wiz launches Zeroday Cloud at Black Hat Europe
Initial DisclosureWiz's research arm launched Zeroday Cloud, a bug-bounty competition for open-source cloud and AI tools with a $4.5 million prize pool, backed by Google Cloud, AWS, and Microsoft and scheduled for December 10 and 11 at Black Hat Europe in London, UK. The contest spans six categories across AI, Kubernetes and cloud-native, containers and virtualization, web servers, databases, and DevOps & automation, with payouts ranging from $10,000 to $300,000. Submitted exploits must achieve complete compromise, defined as a full Container/VM Escape for virtualization targets or a 0-click Remote Code Execution vulnerability for other targets, and participants must register through HackerOne, complete ID verification and tax forms by November 20, and comply with one-entry-per-target and country-restriction rules.
Show sources
- Zeroday Cloud hacking contest offers $4.5 million in bounties — www.bleepingcomputer.com — 06.10.2025 20:12
- Zeroday Cloud hacking contest offers $4.5 million in bounties — www.bleepingcomputer.com — 06.10.2025 20:12
-
06.10.2025 12:44 1 articles · 7mo ago
Wiz launches Zeroday.Cloud
Initial DisclosureWiz announced Zeroday.Cloud, a cloud hacking competition offering $4.5 million in bug bounties and backed by AWS, Google Cloud, and Microsoft. The program spans six categories across AI, Kubernetes and cloud native, containers and virtualization, web servers, databases, and DevOps and automation, with targets including Ollama, vLLM, Nvidia Container Toolkit, Kubernetes API Server, Docker, Nginx, Redis, Apache Airflow, Jenkins, and GitLab CE.
Show sources
- $4.5 Million Offered in New Cloud Hacking Competition — www.securityweek.com — 06.10.2025 12:44
-
06.10.2025 12:44 1 articles · 7mo ago
Zeroday.Cloud entry deadline
Campaign Scope UpdateSecurity researchers entering Zeroday.Cloud must submit their entries by December 1, 2025 before live exploit demonstrations at Black Hat Europe in London. Submitted exploits are expected to demonstrate full Container/VM Escape for virtualization targets or 0-click Remote Code Execution for other targets.
Show sources
- $4.5 Million Offered in New Cloud Hacking Competition — www.securityweek.com — 06.10.2025 12:44